ideaslocas / aDLL
☆70Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for aDLL
- A spin-off research project. Cobalt Strike x Notion collab 2022☆52Updated 2 years ago
- my learning case about windows☆21Updated 2 years ago
- Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…☆135Updated 2 years ago
- Convert shellcode generated using pe_2_shellcode to cdb format.☆96Updated 2 years ago
- Simple windows rpc server for research purposes only☆81Updated 2 years ago
- UUID based Shellcode loader for your favorite C2☆83Updated 2 years ago
- Bypass Detection By Randomising ROR13 API Hashes☆133Updated 2 years ago
- A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity☆32Updated 2 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆111Updated 4 years ago
- Neton is a tool for getting information from Internet connected sandboxes☆92Updated 2 years ago
- CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback☆65Updated 2 years ago
- This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate a…☆55Updated 3 years ago
- Shellcode injection POC using syscalls.☆117Updated 4 years ago
- ☆79Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆97Updated 3 years ago
- SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#☆63Updated last year
- ☆38Updated last year
- Injects shellcode into remote processes using direct syscalls☆74Updated 3 years ago
- Custom Cobalt Strike stagers using different methods of thread execution and memory allocation☆106Updated 4 years ago
- It stinks☆100Updated 2 years ago
- A Cobalt Strike memory evasion loader for redteamers☆95Updated last year
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆69Updated 9 months ago
- AV/EDR evasion via direct system calls.☆106Updated 11 months ago
- ☆56Updated 3 years ago
- AutoStart teamserver and listeners with services☆69Updated 2 years ago
- This aggressor script uses a beacon's note field to indicate the health status of a beacon.☆137Updated 3 years ago