hackerhouse-opensource / MarbleLinks
The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
☆310Updated last year
Alternatives and similar repositories for Marble
Users that are interested in Marble are comparing it to the libraries listed below
Sorting:
- Offensive Lua.☆196Updated last year
- ☆368Updated 2 years ago
- Analyse your malware to surgically obfuscate it☆499Updated 4 months ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆408Updated 4 months ago
- Win32 Shellcode CheatSheet: Your visual guide for crafting and understanding shellcode. Ideal for malware, and exploit developers☆61Updated last year
- ☆189Updated last year
- A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Paylo…☆189Updated last week
- A delicious, but malicious SSL-VPN server 🌮☆250Updated last week
- Unorthodox and stealthy way to inject a DLL into the explorer using icons☆325Updated 4 months ago
- ☆326Updated 2 weeks ago
- Self-spreading Java malware targeting Minecraft servers. Infected servers are capable of scanning for other vulnerable servers, encryptin…☆122Updated 9 months ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆388Updated last year
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆180Updated last year
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆298Updated last week
- Wordlist to crack .zip-file password☆205Updated 3 years ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆271Updated last year
- Venom is a library that meant to perform evasive communication using stolen browser socket☆390Updated 2 years ago
- ☆160Updated 7 months ago
- CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…☆298Updated last year
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆308Updated last year
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆136Updated last year
- Nuke It From Orbit - remove AV/EDR with physical access☆263Updated 10 months ago
- Embed a payload inside a PNG file☆345Updated 11 months ago
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.☆245Updated 5 months ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆265Updated 10 months ago
- ☆132Updated 2 years ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆284Updated 2 months ago
- ☆70Updated 8 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆723Updated 2 months ago
- SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…☆237Updated last week