hid3rx / PEPackerLinks
☆98Updated last year
Alternatives and similar repositories for PEPacker
Users that are interested in PEPacker are comparing it to the libraries listed below
Sorting:
- ☆51Updated last year
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆75Updated last year
- Shellcode obfuscation tool to avoid AV/EDR.☆128Updated last year
- ☆241Updated last year
- Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique☆72Updated 2 years ago
- An implementation of an indirect system call☆129Updated last year
- A simple Sleepmask BOF example☆132Updated 2 months ago
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆186Updated 2 months ago
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆234Updated last month
- Evasive loader to bypass static detection☆58Updated last year
- WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler☆125Updated 2 weeks ago
- Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.☆190Updated 2 years ago
- Windows LPE☆129Updated last year
- bring your own vulnerable driver☆102Updated 2 years ago
- CobaltStrike beacon in rust☆190Updated 11 months ago
- ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过☆40Updated 2 months ago
- beta☆118Updated 10 months ago
- UAC Bypass using UIAccess program QuickAssist☆108Updated 5 months ago
- PE to shellcode☆226Updated 7 months ago
- Exploit for CVE-2023-36802 targeting MSKSSRV.SYS driver☆112Updated last year
- Process injection alternative☆338Updated 11 months ago
- A basic C2 framework written in C☆60Updated last year
- shellcode生成框架☆88Updated last year
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆95Updated last month
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆244Updated last year
- Dumping LSASS with a duplicated handle from custom LSA plugin☆201Updated 3 years ago
- Simulate per-process disconnection in red team environments☆98Updated 2 months ago
- A method to execute syscalls while bypassing EDR's function hooking and call stack analysis.☆20Updated 3 months ago
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆281Updated 3 months ago
- Beacon compiled using clang☆71Updated 2 years ago