eversinc33 / BouncyGateLinks
Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).
☆186Updated 2 years ago
Alternatives and similar repositories for BouncyGate
Users that are interested in BouncyGate are comparing it to the libraries listed below
Sorting:
- COFF and BOF Loader written in Nim☆176Updated 3 years ago
- A tool for converting SysWhispers2 syscalls for use with Nim projects☆123Updated 3 years ago
- Nim Library for Offensive Security Development☆198Updated 2 years ago
- PE Crypter written in Nim☆100Updated 4 years ago
- Nim version of MDSec's Parallel Syscall PoC☆124Updated 3 years ago
- DLL sideloading/proxying with Nim!☆175Updated 3 years ago
- D/Invoke implementation in Nim☆103Updated 3 years ago
- Your syscall factory☆126Updated last week
- NimicStack is the pure Nim implementation of Call Stack Spoofing technique to mimic legitimate programs☆96Updated 3 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆117Updated 2 years ago
- A quick example of the Hells Gate technique in Nim☆96Updated 4 years ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆147Updated 3 years ago
- Experiment on reproducing Obfuscate & Sleep☆154Updated 4 years ago
- A very proof-of-concept port of InlineWhispers for using syscalls in Nim projects.☆166Updated 4 years ago
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆85Updated 5 months ago
- tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"☆178Updated 4 years ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆122Updated last year
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆197Updated 4 years ago
- ☆137Updated 2 years ago
- Sleep obfuscation for shellcode implants and their reflective shit☆53Updated 2 years ago
- Get fresh Syscalls from a fresh ntdll.dll copy☆235Updated 3 years ago
- ☆203Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆148Updated 2 years ago
- Infect Shared Files In Memory for Lateral Movement☆196Updated 2 years ago
- Automated compiler obfuscation for nim☆140Updated 3 years ago
- POC for frustrating/defeating Malware Analysts☆157Updated 3 years ago
- (Demo) 3rd party agent for Havoc☆147Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆277Updated last year
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆232Updated 3 years ago
- C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.☆110Updated 2 years ago