hackerhouse-opensource / OffensiveLua

Related projects ⓘ

Alternatives and complementary repositories for OffensiveLua

• mandiant / msi-search
  ☆267Updated last year
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆180Updated 9 months ago
• hackerhouse-opensource / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆174Updated 10 months ago
• floesen / EventLogCrasher
  ☆181Updated 9 months ago
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆131Updated 10 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 6 months ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆147Updated 6 months ago
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆301Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆190Updated 5 months ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆262Updated last year
• kleiton0x00 / Proxy-DLL-Loads
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆325Updated 5 months ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆168Updated 2 months ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆196Updated last week
• georgesotiriadis / MalwareDev
  ☆82Updated 2 years ago
• dobin / avred
  Analyse your malware to surgically obfuscate it
  ☆419Updated last year
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆116Updated 2 weeks ago
• icyguider / LightsOut
  Generate an obfuscated DLL that will disable AMSI & ETW
  ☆315Updated 4 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• Maldev-Academy / MaldevAcademyLdr.1
  ☆312Updated last year
• RedefiningReality / Cobalt-Strike
  Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
  ☆247Updated 6 months ago
• An0nUD4Y / AV-EDR-Lab-Environment-Setup
  AV/EDR Lab environment setup references to help in Malware development
  ☆186Updated 3 weeks ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆309Updated last year
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆178Updated 4 months ago
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆242Updated last month
• V-i-x-x / AMSI-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆201Updated 3 weeks ago
• decoder-it / TokenStealer
  ☆156Updated last year
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆146Updated 3 weeks ago
• nettitude / Aladdin
  ☆217Updated last year
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆144Updated last year