hackerhouse-opensource / MarbleLinks
The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
☆321Updated last year
Alternatives and similar repositories for Marble
Users that are interested in Marble are comparing it to the libraries listed below
Sorting:
- Analyse your malware to surgically obfuscate it☆505Updated 6 months ago
- ☆374Updated 2 years ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆419Updated 6 months ago
- Offensive Lua.☆217Updated last month
- Inject DLLs into the explorer process using icons☆388Updated 6 months ago
- ☆329Updated 2 months ago
- A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Paylo…☆210Updated last month
- ☆192Updated last year
- Win32 Shellcode CheatSheet: Your visual guide for crafting and understanding shellcode. Ideal for malware, and exploit developers☆64Updated last year
- Self-spreading Java malware targeting Minecraft servers. Infected servers are capable of scanning for other vulnerable servers, encryptin…☆122Updated 11 months ago
- Venom is a library that meant to perform evasive communication using stolen browser socket☆394Updated 2 years ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆389Updated last year
- Wordlist to crack .zip-file password☆207Updated 3 years ago
- Nuke It From Orbit - remove AV/EDR with physical access☆269Updated last year
- Slides & Code snippets for a workshop held @ x33fcon 2024☆275Updated last year
- FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loadi…☆385Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆736Updated 4 months ago
- ☆71Updated 10 months ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆183Updated last year
- Tool designed to exfiltrate OneDrive Business OCR Data☆124Updated 10 months ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆287Updated 4 months ago
- Embed a payload inside a PNG file☆360Updated last year
- A delicious, but malicious SSL-VPN server 🌮☆253Updated 2 months ago
- AV/EDR Lab environment setup references to help in Malware development☆415Updated 9 months ago
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.☆248Updated 7 months ago
- CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…☆300Updated last year
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆316Updated 2 years ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆313Updated 2 months ago
- My collection of malware dev links☆299Updated 6 months ago
- Patching "signtool.exe" to accept expired certificates for code-signing.☆305Updated last year