l0n3m4n / bin2shellLinks
Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)
☆14Updated 2 weeks ago
Alternatives and similar repositories for bin2shell
Users that are interested in bin2shell are comparing it to the libraries listed below
Sorting:
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆34Updated 3 years ago
- This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions☆33Updated 3 months ago
- A simple BOF (Beacon Object File) to search files in the system☆14Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆16Updated last year
- BypassCredGuard CS BOF☆42Updated 5 months ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆47Updated 2 years ago
- replace the shellcode chatacters so that reduce the entropy☆17Updated last year
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆26Updated last year
- This project was for my senior capstone at the University of Arizona. I wanted to create a payload that would potentially bypass AV / EDR…☆14Updated last year
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆45Updated 2 years ago
- ☆19Updated 2 years ago
- Library of BOFs to interact with SQL servers☆21Updated 2 months ago
- A Simple PoC☆21Updated last year
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆52Updated last week
- ☆42Updated last year
- Using LNK files and user input simulation to start processes under explorer.exe☆25Updated 9 months ago
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆33Updated last month
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆18Updated 2 years ago
- Section Mapping Process Injection modified with SysWhisper2 (sw2-secinject): Cobalt Strike BOF☆43Updated 3 years ago
- ☆26Updated last year
- PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…☆21Updated last week
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆51Updated 3 months ago
- A tool to assist DLL hijacking via the Havoc GUI☆13Updated last year
- BloodyAv is Custom Shell Code loader to Bypass Av and Edr.☆14Updated 3 years ago
- A way to maintain long-term access to Windows LAPS for lateral movement in AD via installing an Offensive LAPS RPC backdoor on a DC.☆16Updated 2 weeks ago
- Titan: A generic user defined reflective DLL for Cobalt Strike☆75Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt☆20Updated 2 years ago
- Golang implementation of @CCob's C# ThreadlessInject☆32Updated last year
- Indirect NT syscalls LSASS dumper.☆45Updated last year
- ☆36Updated 2 years ago