furax124 / Protect_LoaderLinks
A fucking real shellcode loader with a GUI. Work-in-Progress.
☆81Updated 6 months ago
Alternatives and similar repositories for Protect_Loader
Users that are interested in Protect_Loader are comparing it to the libraries listed below
Sorting:
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…☆61Updated 7 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54Updated 7 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆61Updated 7 months ago
- Dumping App Bound Protected Credentials & Cookies Without Privileges.☆167Updated 6 months ago
- Threadless shellcode injection tool☆67Updated last year
- Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.☆115Updated 2 weeks ago
- Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies☆49Updated 5 months ago
- Agent for AdaptixC2 containing lateral movement capabilities ( WMI, SCM, WinRM, DCOM ), bof/dotnet/shellcode in memory executions, postex…☆104Updated last week
- Locate dlls and function addresses without PEB Walk and EAT parsing☆92Updated last month
- A Mythic agent for Windows written in C☆142Updated this week
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆50Updated 7 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆53Updated 7 months ago
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆133Updated last year
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆83Updated last year
- Indirect Syscall with TartarusGate Approach in Go☆130Updated 5 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆105Updated 5 months ago
- Section-based payload obfuscation technique for x64☆64Updated last year
- remote process injections using pool party techniques☆69Updated 5 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆99Updated last year
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆102Updated 8 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆100Updated 5 months ago
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆179Updated last month
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆85Updated 8 months ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆72Updated 2 years ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆88Updated 9 months ago
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆44Updated last year
- Shellcode loader☆97Updated last year
- Go Shellcode Loader to be Integrated in Exploration C2☆28Updated 10 months ago
- Work, timer, and wait callback example using solely Native Windows APIs.☆88Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆85Updated last year