eversinc33 / UnXorStringsNetLinks
Deobfuscation of XorStringsNet
☆14Updated 9 months ago
Alternatives and similar repositories for UnXorStringsNet
Users that are interested in UnXorStringsNet are comparing it to the libraries listed below
Sorting:
- Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies☆38Updated last month
- Mythic C2 wrapper for NimSyscallPacker☆25Updated 5 months ago
- ☆57Updated 10 months ago
- ☆34Updated 5 months ago
- ☆59Updated last year
- A port of classic netcat to C#☆33Updated 2 years ago
- ☆47Updated 2 years ago
- ☆19Updated 9 months ago
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆20Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆39Updated 3 years ago
- ☆48Updated 2 years ago
- These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…☆20Updated 2 years ago
- A simple rpc2socks alternative in pure Go.☆29Updated last year
- An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.☆26Updated 3 months ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- A python port of CCob's ThreadlessInject☆25Updated 2 years ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆47Updated 2 years ago
- in-process powershell runner for BRC4☆47Updated last year
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- ☆26Updated 5 months ago
- Just another Process Injection using Process Hollowing technique.☆18Updated last year
- 「⚙️」Detect which native Windows API's (NtAPI) are being hooked☆39Updated 8 months ago
- An improvement and a different approach to Mockingjay Self-Injection.☆35Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- Python3 tool to perform password spraying using RDP☆17Updated 2 years ago
- rust port of pspy with support for process monitoring over dbus☆34Updated 2 months ago
- Repository to gather the BOF files I will be developing☆10Updated 10 months ago
- Rewrite to fit my needs☆30Updated last year