gwillgues / BPFDoor
BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen
☆40Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for BPFDoor
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- A work in progress BOF/COFF loader in Rust☆45Updated last year
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆59Updated last year
- 64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free☆58Updated last year
- Load a dynamic library from memory using a fuse mount☆28Updated last year
- A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines☆41Updated 2 years ago
- Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH☆43Updated 3 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆39Updated 10 months ago
- Standalone Metasploit-like XOR encoder for shellcode☆45Updated 6 months ago
- Golang bindings for PE-sieve☆40Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- ☆37Updated 9 months ago
- ☆58Updated 2 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆45Updated 2 years ago
- all credits go to @mgeeky☆58Updated 3 years ago
- Unpacker for donut shellcode☆10Updated 4 years ago
- Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.☆121Updated 2 years ago
- Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.☆57Updated last year
- Plantronics Desktop Hub LPE☆32Updated 5 months ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆21Updated 6 months ago
- A Poc on blocking Procmon from monitoring network events☆97Updated 2 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆53Updated 2 years ago
- ☆36Updated last year
- Client/server code that impersonates TLS 1.3 to disguise C2 activity.☆59Updated 2 years ago
- ☆82Updated 2 years ago
- ☆53Updated 2 years ago
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆43Updated 3 weeks ago