epi052 / rustdsplitLinks
At some point, I learned about a method to perform a binary search on a file in order to identify its AV signature and change it to bypass signature-based AV. The tool I used back then is gone, so I wrote this.
☆35Updated 5 years ago
Alternatives and similar repositories for rustdsplit
Users that are interested in rustdsplit are comparing it to the libraries listed below
Sorting:
- A shellcode generator with encryption, encoding and polymorphism facilities built-in☆34Updated 3 years ago
- Dumping credentials through windbg and pykd☆41Updated last year
- PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-343…☆43Updated 4 years ago
- A curated list of tools and techniques written from experience in weaponization of malware☆37Updated last year
- The repository accompanying the Buer Emulation workshop☆24Updated 4 years ago
- PoC for CVE-2021-4034 dubbed pwnkit☆35Updated 3 years ago
- MiniDump a process in memory with rust☆36Updated 4 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- A fast wordlist to nthash converter☆21Updated 3 years ago
- Dump objects from .NET dumps.☆51Updated 3 years ago
- In 'n Out - See what goes in and comes out of PEs☆35Updated 3 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆22Updated 4 years ago
- Just another useless C2 occupying space in some HDD somewhere.☆20Updated 2 years ago
- My experiments in weaponizing Nim (https://nim-lang.org/)☆17Updated 2 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆66Updated 3 years ago
- pypykatz plugin for volatility3 framework☆42Updated 3 months ago
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 3 years ago
- Exploits made practicing for OSCE☆23Updated 4 years ago
- ☆37Updated 3 years ago
- ☆12Updated 5 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 3 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆21Updated 5 years ago
- A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows☆53Updated 4 years ago
- Windows internals and exploitation tricks☆105Updated 3 months ago
- Process Monitor filter for finding privilege escalation vulnerabilities on Windows☆79Updated 4 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆68Updated last year
- AMSI detection PoC☆31Updated 5 years ago
- Python 3 server used to control SK8RAT implant☆36Updated 4 years ago
- ☆23Updated 3 years ago