jm33-m0 / go-lpe
A collection of weaponized LPE exploits written in Go
☆52Updated last month
Alternatives and similar repositories for go-lpe:
Users that are interested in go-lpe are comparing it to the libraries listed below
- works but not work, cao!☆24Updated 3 years ago
- ☆13Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated 2 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆12Updated 2 years ago
- Detects attempts and successful exploitation of CVE-2022-26809☆32Updated 5 months ago
- Ntdll Unhooking POC☆19Updated 2 years ago
- Slides from out talk at BH IL 2022☆28Updated 2 years ago
- L3 proxy backed by Shadowsocks☆10Updated 2 years ago
- Some Cyber Security related scripts☆18Updated last year
- Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.☆11Updated 4 years ago
- ☆18Updated 3 years ago
- BOF/COFF obj file to PIC(shellcode). by golang☆37Updated 2 years ago
- Terminate the eventlog thread to disable the windows eventlog☆20Updated 4 years ago
- not an exploit or a poc☆17Updated 2 years ago
- Post-Exploitation script to exfiltrate 7-zip files☆10Updated 2 years ago
- A simple BOF implementation of klist using Windows API☆30Updated 2 years ago
- SyscallLoader☆10Updated 3 years ago
- ☆27Updated 3 years ago
- MacOS C2 Framework☆83Updated 3 years ago
- Proofs-Of-360Security Sandbox Escape☆10Updated 2 years ago
- Savoir is a tool to perform tasks during internal security assessment☆19Updated 2 years ago
- RDI implementation in Nim☆62Updated 4 years ago
- ☆21Updated 3 years ago
- Cobalt Strike Get clipboard plugin☆12Updated last year
- TrojanDropper/PS.Maloader.d☆12Updated 3 years ago
- Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)☆11Updated 2 years ago
- Simple shellcode injection in Nim encrypted in XOR☆22Updated last year
- Proof of concept about a path traversal vulnerability in Microsoft's Diagcab technology that could lead to remote code execution☆23Updated 2 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆30Updated 3 years ago