jhackz / RTO-Implant
Red Team Operator: Malware Development Essentials Course
☆98Updated 4 years ago
Alternatives and similar repositories for RTO-Implant:
Users that are interested in RTO-Implant are comparing it to the libraries listed below
- Weaponising C# - Fundamentals Training Content☆70Updated 3 years ago
- A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn☆101Updated 2 years ago
- ☆112Updated last year
- Simple APPLocker bypass summary☆41Updated 6 years ago
- Simple EDR implementation to demonstrate bypass☆172Updated 4 years ago
- 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.☆129Updated 2 years ago
- A curated list of tools and techniques written from experience in weaponization of malware☆36Updated last year
- ☆47Updated 5 years ago
- A fake AMSI Provider which can be used for persistence.☆150Updated 3 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆66Updated 10 months ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- (kinda) Malicious Outlook Reader☆135Updated 4 years ago
- ☆55Updated 3 years ago
- WNF Code Execution Library Using C#☆110Updated 4 years ago
- MiniDumpWriteDump behavior modification hook☆50Updated 4 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆124Updated 3 years ago
- A shellcode generator with encryption, encoding and polymorphism facilities built-in☆32Updated 2 years ago
- ☆94Updated 2 years ago
- Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.☆37Updated 5 years ago
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- Mochi is a proof-of-concept C++ loader that leverages the ChaiScript embedded scripting language to execute code.☆101Updated 3 years ago
- AMSI Bypass Via the Heap☆107Updated 4 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆84Updated 2 years ago
- Simple AV Evasion for PE Files☆42Updated 3 years ago
- ☆72Updated 3 years ago
- Petaq - Purple Team Command & Control Server☆104Updated 2 years ago
- Evasive Process Hollowing Techniques☆139Updated 4 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆71Updated 4 years ago