lesnuages / go-execute-assembly

Related projects ⓘ

Alternatives and complementary repositories for go-execute-assembly

• CCob / goreflect
  Reflective DLL loading of your favorite Golang program
  ☆164Updated 4 years ago
• ayoul3 / reflect-pe
  Reflectively load PE
  ☆101Updated 4 years ago
• Binject / shellcode
  Shellcode library as a Go package
  ☆69Updated 5 years ago
• D00MFist / Go4aRun
  Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process
  ☆227Updated 4 years ago
• mdsecactivebreach / WMIPersistence
  WMI Event Subscription Persistence in C#
  ☆111Updated 5 years ago
• djhohnstein / CSharpSetThreadContext
  C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread
  ☆119Updated 5 years ago
• jnqpblc / SharpTask
  SharpTask is a simple code set to interact with the Task Scheduler service api and is compatible with Cobalt Strike.
  ☆87Updated 3 years ago
• anthemtotheego / C_Shot
  ☆111Updated 4 years ago
• aus / gopherheaven
  Go implementation of the Heaven's Gate technique
  ☆94Updated 3 years ago
• BelodedAleksey / go_libpeconv
  Golang version of https://github.com/hasherezade/libpeconv
  ☆26Updated 4 years ago
• vyrus001 / shellGo
  A Microsoft windows x86_64 Golang shellcode tester that includes example calc.exe shellcode.
  ☆64Updated 6 years ago
• abdullah2993 / go-runpe
  execute a PE in the address space of another PE aka process hollowing
  ☆53Updated 2 years ago
• marpie / signed-loaders
  signed-loaders documents Windows executables that can be used for side-loading DLLs.
  ☆67Updated 5 years ago
• mdsecactivebreach / Browser-ExternalC2
  External C2 Using IE COM Objects
  ☆97Updated 5 years ago
• mdsecactivebreach / firewalker
  ☆147Updated 4 years ago
• anthemtotheego / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆210Updated 3 years ago
• rvrsh3ll / SharpCOM
  CSHARP DCOM Fun
  ☆125Updated 5 years ago
• airzero24 / WMIReg
  PoC to interact with local/remote registry hives through WMI
  ☆83Updated 4 years ago
• G0ldenGunSec / SharpTransactedLoad
  Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
  ☆159Updated 3 years ago
• iammaguire / Gotato
  Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.
  ☆111Updated 3 years ago
• med0x2e / genxlm
  A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…
  ☆87Updated 5 years ago
• outflanknl / TamperETW
  PoC to demonstrate how CLR ETW events can be tampered.
  ☆185Updated 4 years ago
• slyd0g / SK8RAT
  C++ implant that interfaces with a SK8PARK server
  ☆47Updated 3 years ago
• synacktiv / AMSI-Bypass
  Lists of AMSI triggers (VBA, JScript / VBScript)
  ☆32Updated 5 years ago
• 0xB455 / AmsiBypass
  C# PoC implementation for bypassing AMSI via in memory patching
  ☆66Updated 4 years ago
• FalconForceTeam / SysWhispers2BOF
  Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
  ☆117Updated 2 years ago
• rxwx / cs-rdll-ipc-example
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆111Updated 4 years ago
• pkb1s / SharpRelay
  ☆170Updated 3 years ago
• Ne0nd0g / go-clr
  A PoC package for hosting the CLR and executing .NET from Go
  ☆67Updated 4 months ago