☆74Jul 23, 2021Updated 4 years ago
Alternatives and similar repositories for ProcessGhosting
Users that are interested in ProcessGhosting are comparing it to the libraries listed below
Sorting:
- SyscallLoader☆11Sep 13, 2021Updated 4 years ago
- bypass BeaconEye☆89Sep 9, 2021Updated 4 years ago
- 创建服务持久化☆108Apr 26, 2021Updated 4 years ago
- ☆81Feb 12, 2022Updated 4 years ago
- BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs☆187Oct 3, 2021Updated 4 years ago
- Beacon.dll reverse☆141Sep 5, 2021Updated 4 years ago
- HackBrowserData的反射模块☆177Mar 13, 2021Updated 4 years ago
- Web ExternalC2 Demo☆52Aug 18, 2020Updated 5 years ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆148Sep 1, 2021Updated 4 years ago
- Read Memory without ReadProcessMemory for Current Process☆92Feb 13, 2022Updated 4 years ago
- Cobalt Strike BOF that Add an admin user☆78Oct 11, 2022Updated 3 years ago
- ☆36Sep 7, 2020Updated 5 years ago
- 一款基于webshell命令执行功能实现的GUI webshell管理工具,支持流量加密☆218Jun 4, 2021Updated 4 years ago
- Hides processes from the windows task manager using IAT hooking.☆22Mar 30, 2021Updated 4 years ago
- ☆81Dec 24, 2021Updated 4 years ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆731Sep 1, 2021Updated 4 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆204Feb 23, 2022Updated 4 years ago
- Memshell☆292Dec 7, 2021Updated 4 years ago
- bypass UAC even when configured to always notify user☆29Aug 31, 2021Updated 4 years ago
- Bypass cobaltstrike beacon config scan☆84May 24, 2021Updated 4 years ago
- ☆14Sep 2, 2021Updated 4 years ago
- e-mesaage <=4.15 后台jar包上传exp☆47Mar 15, 2019Updated 6 years ago
- Misc TaskScheduler Plays☆238Sep 27, 2022Updated 3 years ago
- Offensive tools written for practice purposes☆162Sep 23, 2022Updated 3 years ago
- Golang implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆26Dec 3, 2021Updated 4 years ago
- This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate a…☆57Nov 4, 2021Updated 4 years ago
- Command line interface to dump LSASS memory to disk via SilentProcessExit☆454Dec 23, 2020Updated 5 years ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆331Sep 10, 2024Updated last year
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆115Jun 7, 2021Updated 4 years ago
- Windows PE - TLS (Thread Local Storage) Injector in C/C++☆108Jan 3, 2021Updated 5 years ago
- POCs for Shellcode Injection via Callbacks☆411Feb 23, 2021Updated 5 years ago
- C++ WinRM API via Reflective DLL☆145Sep 11, 2021Updated 4 years ago
- WINDOWS TELEMETRY权限维持☆257Jul 2, 2020Updated 5 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆294Jul 25, 2021Updated 4 years ago
- AntSword(蚁剑)全参数流量XOR和Base64加伪装WebShell☆163Sep 28, 2021Updated 4 years ago
- Pseudorandom AES-256 encryption designed to protect shellcode and arbitrary strings. C# and C/C++ compatible.☆102Jan 7, 2022Updated 4 years ago
- 提取DC日志,快速获取域用户对应IP地址☆308Mar 21, 2022Updated 3 years ago
- ☆88Jun 28, 2022Updated 3 years ago
- ShellCodeLoader via DInvoke☆60Jul 5, 2021Updated 4 years ago