Go interface to NTDLL functions
☆80Apr 18, 2024Updated last year
Alternatives and similar repositories for go-ntdll
Users that are interested in go-ntdll are comparing it to the libraries listed below
Sorting:
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Go implementation of the Heaven's Gate technique☆102Feb 11, 2021Updated 5 years ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆110Mar 25, 2024Updated last year
- Proofs-Of-360Security Sandbox Escape☆10Mar 18, 2022Updated 3 years ago
- A COFF Loader written in Rust☆139Dec 1, 2025Updated 3 months ago
- A C DLL that can control powershell☆51Dec 13, 2019Updated 6 years ago
- Image Steganography In C Language.☆49Jan 13, 2017Updated 9 years ago
- ☆12Oct 9, 2020Updated 5 years ago
- Enable or Disable TokenPrivilege(s)☆15May 17, 2024Updated last year
- ☆14Sep 2, 2021Updated 4 years ago
- easy dll proxying in go☆14Apr 24, 2022Updated 3 years ago
- ☆14Dec 26, 2024Updated last year
- It's what all the kids are talking about☆12Apr 25, 2023Updated 2 years ago
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆527Oct 12, 2022Updated 3 years ago
- Linux Sleep Obfuscation☆112Jan 7, 2024Updated 2 years ago
- Really stupid re-implementation of invoke-wmiexec☆217Feb 25, 2023Updated 3 years ago
- Windows UAC bypass techniques implemented and written in Go☆216Mar 27, 2022Updated 3 years ago
- A BOF/COFF loader implemented in Go and CGO.☆23Jan 16, 2024Updated 2 years ago
- 杂 物 收 纳☆15Aug 4, 2023Updated 2 years ago
- Implements io.ReaderAt over raw memory.☆13Jun 26, 2020Updated 5 years ago
- A PoC package for hosting the CLR and executing .NET from Go�☆78Jul 9, 2024Updated last year
- A swiss army knife tool for running, injecting and organizing your BOFs collection☆73Feb 20, 2026Updated 2 weeks ago
- Cargo subcommand to build a crate into shellcode☆27Aug 15, 2024Updated last year
- desktop screenshot☆29Apr 26, 2023Updated 2 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆577Aug 30, 2023Updated 2 years ago
- Explore Job Objects on a Windows system☆82Sep 4, 2019Updated 6 years ago
- A simple BOF (Beacon Object File) to search files in the system☆15Dec 2, 2023Updated 2 years ago
- golang实现的PE解析工具☆15Nov 15, 2022Updated 3 years ago
- Dirfuzz by golang☆15Feb 28, 2023Updated 3 years ago
- Load and execute a common object file format (COFF) in the current process☆32Mar 9, 2024Updated 2 years ago
- Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut☆362Sep 8, 2022Updated 3 years ago
- ROP-based sleep obfuscation to evade memory scanners☆376Jun 22, 2025Updated 8 months ago
- Moonwalk++: Simple POC Combining StackMoonwalking and Memory Encryption☆204Dec 17, 2025Updated 2 months ago
- Reflective DLL injection Execution☆20Sep 9, 2022Updated 3 years ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆75Jan 3, 2025Updated last year
- impersonate trustedinstaller by fiddling with tokens☆17Aug 30, 2021Updated 4 years ago
- Fork & modify of Wireguard's Memmod☆33Aug 2, 2023Updated 2 years ago
- DLL Hijack Search Order Enumeration BOF☆149Nov 3, 2021Updated 4 years ago
- Load and execute COFF files and Cobalt Strike BOFs in-memory☆226Sep 13, 2022Updated 3 years ago