limbenjamin / ReverseShellDll
C++ Windows Reverse Shell - Universal DLL Hijack | SSL Encryption | Statically Linked
☆88Updated 5 years ago
Alternatives and similar repositories for ReverseShellDll:
Users that are interested in ReverseShellDll are comparing it to the libraries listed below
- New UAC bypass for Silent Cleanup for CobaltStrike☆192Updated 3 years ago
- Evasive Process Hollowing Techniques☆139Updated 4 years ago
- AmsiScanBufferBypass using D/Invoke☆133Updated 3 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆116Updated 4 years ago
- C# PoC implementation for bypassing AMSI via in memory patching☆65Updated 4 years ago
- (kinda) Malicious Outlook Reader☆135Updated 4 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆240Updated 3 years ago
- Simple DLL that add a user to the local Administrators group☆77Updated 3 years ago
- ☆150Updated 4 years ago
- A fake AMSI Provider which can be used for persistence.☆150Updated 3 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆216Updated 5 years ago
- Dump stuff without touching disk☆162Updated 4 years ago
- Weaponizing for privileged file writes bugs with PrintNotify Service☆134Updated 2 years ago
- NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)☆118Updated last year
- Loads a custom dll in system32 via diaghub.☆72Updated 5 years ago
- Run Rubeus via Rundll32☆200Updated 5 years ago
- Malicious Shortcut(.lnk) Generator☆81Updated 6 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆268Updated last year
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆157Updated 3 years ago
- Simple APPLocker bypass summary☆41Updated 6 years ago
- Shellcode injector using direct syscalls☆119Updated 4 years ago
- ☆132Updated 4 years ago
- This is a C# implementation of making a process/executable run as NT AUTHORITY/SYSTEM. This is achieved through parent ID spoofing of alm…☆106Updated 2 years ago
- Collection of tested Cobaltstrike aggressor scripts.☆115Updated 5 years ago
- Yet another PoC for https://www.wietzebeukema.nl/blog/hijacking-dlls-in-windows☆143Updated 4 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆245Updated 4 years ago
- POC for NetworkService PrivEsc☆126Updated 4 years ago
- An on-the-fly Powershell script obfuscator meant for red team engagements. Built out of necessity.☆141Updated 3 years ago
- Beacon Object File (BOF) for remote process injection via thread hijacking☆209Updated 4 years ago
- Pass the Hash to a named pipe for token Impersonation☆143Updated 3 years ago