lem0nSec / KBlast

Related projects ⓘ

Alternatives and complementary repositories for KBlast

• OtterHacker / SetProcessInjection
  ☆142Updated last year
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader
  ☆85Updated 8 months ago
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆148Updated 10 months ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆125Updated 5 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆105Updated 4 months ago
• securifybv / BOFRyptor
  ☆118Updated last year
• Octoberfest7 / enumhandles_BOF
  ☆116Updated 2 months ago
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆174Updated last year
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆154Updated 2 months ago
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆108Updated last month
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆82Updated 5 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆55Updated 3 months ago
• SaadAhla / D1rkSleep
  Improved version of EKKO by @5pider that Encrypts only Image Sections
  ☆113Updated last year
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆148Updated 5 months ago
• nettitude / Tartarus-TpAllocInject
  ☆175Updated 11 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆46Updated 3 months ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆75Updated last year
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆154Updated 10 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆78Updated 6 months ago
• deepinstinct / ShimMe
  ☆124Updated 3 weeks ago
• safedv / RustVEHSyscalls
  Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored …
  ☆101Updated 3 weeks ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆141Updated last week
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆161Updated 5 months ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆171Updated 10 months ago
• MzHmO / DebugAmsi
  DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
  ☆91Updated last year
• 0prrr / Malwear-Sweet
  Malware?
  ☆70Updated last month
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆47Updated 8 months ago
• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆165Updated last year