lem0nSec / SkeletonKey

Related projects: ⓘ

• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69Updated last year
• Ap3x / COFF-Loader
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆34Updated 9 months ago
• outflanknl / unmanaged-dotnet-patch
  Modify managed functions from unmanaged code
  ☆49Updated 7 months ago
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 3 years ago
• Cracked5pider / kaine-assembly
  a demo module for the kaine agent to execute and inject assembly modules
  ☆33Updated 3 weeks ago
• rbmm / SDD
  Self Delete DLL
  ☆23Updated 7 months ago
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆36Updated 6 months ago
• realoriginal / krbdump
  A way to extract tickets in case I need to purge and restore tickets on the fly.
  ☆15Updated 4 months ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• Mr-Un1k0d3r / BOFCode
  Bunch of BOF files
  ☆21Updated 7 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆17Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆30Updated last month
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆34Updated 2 years ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆20Updated this week
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆30Updated last year
• D1rkMtr / AmsiScanBuffer
  ☆38Updated this week
• Kharos102 / ReadWriteDriverSample
  ☆23Updated 4 months ago
• keowu / InstrumentationCallbackToolKit
  A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…
  ☆20Updated 11 months ago
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆10Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year
• rasta-mouse / KerbApp
  ☆27Updated 3 months ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆39Updated last year
• rbmm / SC
  shell code example
  ☆10Updated 3 weeks ago
• ahron-chet / GuardBypassToolkit
  A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…
  ☆16Updated 2 months ago
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆38Updated last year
• Orange-Cyberdefense / EDRSnowblast
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆18Updated 11 months ago
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆45Updated this week
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆33Updated last year
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆22Updated last month
• rbmm / DirectSysCall
  ☆11Updated last year