lem0nSec / SkeletonKey
Reproducing the SkeletonKey malware.
☆11Updated last year
Alternatives and similar repositories for SkeletonKey:
Users that are interested in SkeletonKey are comparing it to the libraries listed below
- Offensive Assembly code snippets.☆12Updated last year
- ☆27Updated 3 months ago
- An In-memory Embedding of CPython☆28Updated 3 years ago
- ☆18Updated 6 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆21Updated 2 weeks ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆26Updated 2 months ago
- BOF for C2 framework☆41Updated 5 months ago
- RunPE adapted for x64 and written in C, does not use RWX☆25Updated 11 months ago
- Hooked create process injection for meterpreter☆23Updated 3 years ago
- ☆20Updated 10 months ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆24Updated 8 months ago
- A simple rpc2socks alternative in pure Go.☆28Updated 9 months ago
- Unix Process hollowing in rust☆22Updated 4 months ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- ☆25Updated last week
- C# API for Nidhogg rootkit☆17Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆22Updated last year
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆46Updated last year
- Self Delete DLL☆23Updated last year
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆21Updated last year
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆31Updated last year
- Small tool to play with IOCs caused by Imageload events☆42Updated last year
- ☆36Updated 2 years ago
- ☆28Updated 10 months ago
- DFSCoerce exe revisited version with custom authentication☆39Updated last year
- a demo module for the kaine agent to execute and inject assembly modules☆38Updated 7 months ago