jaamaal / EmbedLinks
Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, ProjectSauron, APT29, EquationGroup, including Stuxnet / Flame.
☆21Updated 5 years ago
Alternatives and similar repositories for Embed
Users that are interested in Embed are comparing it to the libraries listed below
Sorting:
- Recreating and reviewing the Windows persistence methods☆39Updated 4 years ago
- Ransoblin (Ransomware Bokoblin)☆18Updated 5 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 4 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 5 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- Dell Driver EoP (CVE-2021-21551)☆32Updated 3 years ago
- AMSI detection PoC☆31Updated 5 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆54Updated 4 years ago
- AppXSVC Service race condition - privilege escalation☆29Updated 6 years ago
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆33Updated 6 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆79Updated 5 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 4 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆70Updated 3 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Updated 7 years ago
- A collection of my presentation materials.☆17Updated last year
- A simple provider to analyse what gets passed into Microsoft's Anti-Malware Scan Interface☆17Updated 6 years ago
- Sources Codes of many Office Malwares☆17Updated 3 years ago
- powershell tool for VM evasion☆42Updated 5 years ago
- A simple injector that uses LoadLibraryA☆18Updated 5 years ago
- PoC code from blog☆16Updated 5 years ago
- NT AUTHORITY\SYSTEM☆43Updated 5 years ago
- XOR crypt/decrypt using C#☆12Updated 5 years ago
- PoC Ransomware with Coinbase Commerce integration built on C# .NET Framework (console) and PHP☆25Updated 3 years ago
- Just another casual shellcode native loader☆25Updated 3 years ago
- A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)☆16Updated 2 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆37Updated 10 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 3 years ago
- Offensive RPC PoC☆88Updated 4 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆41Updated 5 years ago
- Injects shellcode into remote processes using direct syscalls☆77Updated 5 years ago