ASPX Web Shell with COFF Loader
☆130Mar 10, 2026Updated 2 months ago
Alternatives and similar repositories for ASPX_WebShell_COFFLoader
Users that are interested in ASPX_WebShell_COFFLoader are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Async BOF implementation of 'Rubeus monitor' to detect and automatically extract Kerberos TGTs as they appear on a target system.☆121Apr 22, 2026Updated last month
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated 3 weeks ago
- Reflective PE loader written in Zig. Loads and executes native and .NET PE files directly from memory.☆62Mar 2, 2026Updated 2 months ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 4 months ago
- PoC for generating bthprops.cpl module designed to be loaded by Fsquirt.exe LOLBin☆123Jan 4, 2026Updated 4 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A Cobalt Strike RL built with Crystal Palac; module overloading, NtContinue entry transfer, call stack spoofing, sleep masking, and stati…☆207Mar 15, 2026Updated 2 months ago
- ☆45Apr 13, 2026Updated last month
- This is a Sharp assembly loader in PowerShell☆15Oct 23, 2025Updated 7 months ago
- Bring your own Unwind Data Framework☆143Mar 15, 2026Updated 2 months ago
- A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…☆296Feb 21, 2026Updated 3 months ago
- BOF to impersonate TrustedInstaller via DISM API trigger and thread impersonation☆131Mar 27, 2026Updated 2 months ago
- Native C++ access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack.☆78Mar 27, 2026Updated last month
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆65Apr 2, 2025Updated last year
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.☆127Mar 30, 2026Updated last month
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆86Oct 20, 2025Updated 7 months ago
- A Crystal Palace shared library to resolve & perform syscalls☆61Oct 29, 2025Updated 6 months ago
- Self Cleanup in post-ex job☆59Sep 10, 2024Updated last year
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆95Jul 3, 2025Updated 10 months ago
- adws enumeration bof☆172Feb 16, 2026Updated 3 months ago
- ☆230Mar 13, 2026Updated 2 months ago
- Overview of MS Defender☆141Feb 20, 2026Updated 3 months ago
- ☆56Jun 28, 2025Updated 10 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself☆96Apr 9, 2026Updated last month
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆273Jun 18, 2025Updated 11 months ago
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 10 months ago
- Generate DLL proxy/sideload projects. Automatically parses PE export tables and generates ready-to-compile project for red team engagemen…☆153Mar 8, 2026Updated 2 months ago
- Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective☆176May 8, 2026Updated 2 weeks ago
- ☆83Apr 8, 2026Updated last month
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated 4 months ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆62Feb 25, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆147Nov 6, 2025Updated 6 months ago
- Set of PoC to abuse Windows minifilters functionality☆84May 1, 2026Updated 3 weeks ago
- ☆54May 31, 2025Updated 11 months ago
- SamrSearch can get user info and group info with MS-SAMR.☆15Feb 15, 2022Updated 4 years ago
- ☆49Apr 9, 2025Updated last year
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆168Nov 2, 2025Updated 6 months ago
- Azure apim mini proxy☆59May 18, 2026Updated last week