jm33-m0 / go-lpeLinks
A collection of weaponized LPE exploits written in Go
☆53Updated 8 months ago
Alternatives and similar repositories for go-lpe
Users that are interested in go-lpe are comparing it to the libraries listed below
Sorting:
- ☆27Updated 3 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated 3 years ago
- works but not work, cao!☆24Updated 4 years ago
- ☆18Updated 4 years ago
- DPX - the Doge Packer for eXecutables☆29Updated 3 years ago
- PoC for CVE-2022-21974 "Roaming Security Rights Management Services Remote Code Execution Vulnerability"☆60Updated 3 years ago
- Ntdll Unhooking POC☆19Updated 3 years ago
- Beacon Object Files.☆37Updated last year
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆13Updated 3 years ago
- Detects attempts and successful exploitation of CVE-2022-26809☆33Updated last year
- ☆13Updated 3 years ago
- not an exploit or a poc☆17Updated 3 years ago
- RDI implementation in Nim☆64Updated 4 years ago
- MacOS C2 Framework☆85Updated 4 years ago
- Backdoored Electron app.asar☆15Updated 4 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 4 years ago
- Rust Weaponization for Red Team Engagements.☆14Updated 3 years ago
- Slides from out talk at BH IL 2022☆29Updated 3 years ago
- Python Script to quickly check if a host is running NetScaler Gateway and/or AAA☆12Updated 2 years ago
- ☆46Updated 5 months ago
- Proof of Concept for EFSRPC Arbitrary File Upload (CVE-2021-43893)☆64Updated 3 years ago
- Cobalt Strike DNS beacon parser☆11Updated 3 years ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆40Updated 5 years ago
- ☆10Updated 2 years ago
- Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.☆40Updated 2 years ago
- ☆19Updated 3 years ago
- This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager☆48Updated 2 years ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Updated 3 years ago
- ☆48Updated 3 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago