lem0nSec / SkeletonKeyLinks
Reproducing the SkeletonKey malware.
☆11Updated last year
Alternatives and similar repositories for SkeletonKey
Users that are interested in SkeletonKey are comparing it to the libraries listed below
Sorting:
- Hooked create process injection for meterpreter☆23Updated 4 years ago
- 「⚙️」Detect which native Windows API's (NtAPI) are being hooked☆39Updated 9 months ago
- An In-memory Embedding of CPython☆30Updated 4 years ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆22Updated 2 years ago
- Offensive Assembly code snippets.☆12Updated 2 years ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated last year
- ☆60Updated last year
- ☆47Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread☆31Updated 3 years ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated last year
- ☆37Updated 5 months ago
- A work in progress BOF/COFF loader in Rust☆51Updated 2 years ago
- BOF for C2 framework☆43Updated 10 months ago
- Hunting and injecting RWX 'mockingjay' DLLs in pure nim☆59Updated 9 months ago
- Just another ntdll unhooking using Parun's Fart technique☆75Updated 2 years ago
- early cascade injection PoC based on Outflanks blog post, in rust☆60Updated 10 months ago
- Collection of Rust repos useful for Red Teamers.☆34Updated 3 years ago
- ☆38Updated 5 months ago
- Windows AppLocker Driver (appid.sys) LPE☆66Updated last year
- Linux Sleep Obfuscation☆106Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- idk man this was the default github name☆35Updated 2 years ago
- A C# implementation that disables Windows Firewall bypassing UAC☆15Updated 11 months ago
- A bunch of shenanigans using functions, VEH and more☆35Updated 3 months ago
- EvtPsst☆55Updated last year
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆73Updated last year
- Remap ntdll.dll using only NTAPI functions with a suspended process☆26Updated 5 months ago
- miscellaneous codes☆34Updated 2 years ago
- Thats it! An Open-Source Windows UEFI Rootkit☆27Updated 2 months ago