latortuga71 / GOCoffLoader
Its a coff loader ported to go
☆18Updated 2 years ago
Alternatives and similar repositories for GOCoffLoader:
Users that are interested in GOCoffLoader are comparing it to the libraries listed below
- Its a coff loader ported to go( Modified by TimWhite )☆26Updated last year
- Golang implementation of @CCob's C# ThreadlessInject☆32Updated 10 months ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated last year
- ELF Beacon Object File (BOF) Template☆48Updated 4 months ago
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆43Updated 2 years ago
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process☆41Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆44Updated 2 years ago
- ☆45Updated last year
- Titan: A generic user defined reflective DLL for Cobalt Strike☆74Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt☆18Updated 2 years ago
- This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions☆31Updated 2 weeks ago
- Sliver agent rewritten in C++☆44Updated 6 months ago
- BOF/COFF obj file to PIC(shellcode). by golang☆37Updated 2 years ago
- BypassCredGuard CS BOF☆33Updated 2 months ago
- Beacon Object Files.☆35Updated last year
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Updated 3 years ago
- A Simple PoC☆21Updated 10 months ago
- List/Read contents of Zip files (in memory and without extraction) using CobaltStrike's Execute-Assembly☆58Updated 2 years ago
- A VSCode plugin to assist with BOF development.☆34Updated 7 months ago
- x64 version☆30Updated 3 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Updated 3 years ago
- Using LNK files and user input simulation to start processes under explorer.exe☆24Updated 6 months ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆17Updated last year
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆48Updated last month
- SAM Dumping in C#☆44Updated 2 months ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆32Updated 3 years ago
- HookDetection☆46Updated 3 years ago
- CVE-2024-40711-exp☆39Updated 5 months ago
- ProcExp Driver (Ab)use☆21Updated 2 years ago
- Reflective DLL injection Execution☆19Updated 2 years ago