listinvest / undonut

Related projects: ⓘ

• jfmaes / DeepSleep
  all credits go to @mgeeky
  ☆58Updated 2 years ago
• fashionproof / RunHijackHunter
  ☆15Updated 3 years ago
• johneiser / MalleableC2Parser
  A library to parse, modify, and implement Malleable C2 profiles
  ☆21Updated 5 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆92Updated 3 years ago
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆26Updated 4 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 2 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆37Updated last year
• last-byte / hybris
  ☆22Updated this week
• thesnoom / extps-cobalt-strike-bof
  Extended Process List (Search functionality)
  ☆27Updated 3 years ago
• Mr-Un1k0d3r / RedTeamFSharp
  ☆25Updated this week
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆35Updated 3 months ago
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆27Updated 2 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 2 years ago
• sk3w / beacon-object-files
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Updated 3 years ago
• SecIdiot / bootdoor
  ☆31Updated this week
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆51Updated 2 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆18Updated 3 years ago
• m0rv4i / Syscalls-Extractor
  ☆53Updated this week
• moloch-- / DarkLoadLibrary
  LoadLibrary for offensive operations
  ☆32Updated 2 years ago
• rad9800 / talks
  ☆26Updated last year
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆30Updated 6 months ago
• 0x3rhy / GetClipboard
  Cobalt Strike Get clipboard plugin
  ☆12Updated last year
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆28Updated 2 years ago
• aaaddress1 / xlsKami
  Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets
  ☆47Updated 3 years ago
• NUL0x4C / W0wS3cur1tyEDR
  ☆50Updated this week
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Updated 2 years ago
• EvanMcBroom / fuse-loader
  Load a dynamic library from memory using a fuse mount
  ☆27Updated last year
• Gr1mmie / Coeus
  ADSI based SA tool
  ☆15Updated 2 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆29Updated 4 years ago
• ShellBind / G0T-B0R3D
  ☆17Updated this week