listinvest / undonutView external linksLinks
Unpacker for donut shellcode
☆21Jun 20, 2020Updated 5 years ago
Alternatives and similar repositories for undonut
Users that are interested in undonut are comparing it to the libraries listed below
Sorting:
- GoLang sys全端口扫描☆13Jan 25, 2022Updated 4 years ago
- Load and execute a common object file format (COFF) in the current process☆32Mar 9, 2024Updated last year
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆17Sep 26, 2025Updated 4 months ago
- Kernel module that allows hiding files in any filesystem☆23Dec 20, 2024Updated last year
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Jun 18, 2022Updated 3 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆24Jan 6, 2023Updated 3 years ago
- 通过OXID解析器获取Windows远程主机上网卡地址☆25Aug 8, 2022Updated 3 years ago
- Example of an ELF parser to learn about the ELF format☆10Oct 6, 2024Updated last year
- Simple reverse ICMP shell☆14Apr 30, 2024Updated last year
- Cobalt Strike Launcher on macOS☆12Nov 28, 2022Updated 3 years ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Dec 16, 2021Updated 4 years ago
- Shadowsocks/ShadowsocksR 账号在线监控☆12Nov 25, 2018Updated 7 years ago
- PoC for CVE-2025-48384☆20Jul 9, 2025Updated 7 months ago
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- ☆10May 25, 2023Updated 2 years ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆11Nov 24, 2023Updated 2 years ago
- Mimikatz built as a static library.☆12Feb 9, 2022Updated 4 years ago
- ☆10Jan 30, 2022Updated 4 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Sep 30, 2022Updated 3 years ago
- ☆14Dec 26, 2024Updated last year
- CPL remote trigger☆43Dec 28, 2025Updated last month
- An x64 binary executing code that's not inside of it.☆17Feb 28, 2023Updated 2 years ago
- ☆14Aug 8, 2022Updated 3 years ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆107Mar 25, 2024Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆41Jul 9, 2023Updated 2 years ago
- Unmask real IP address of a domain hidden behind Cloudflare by IPs bruteforcing☆25Dec 3, 2024Updated last year
- crypto args for golang☆17Feb 14, 2022Updated 4 years ago
- windows API to hide console window by golang☆35Dec 20, 2021Updated 4 years ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆74Jan 3, 2025Updated last year
- A simple header only SHA1 implementation in C (no dependencies)☆38Feb 10, 2025Updated last year
- Golang library implementing NTLM☆16Aug 7, 2024Updated last year
- Post-exploitation script developed using impacket☆21Mar 15, 2022Updated 3 years ago
- Identifies metadata of .NET binary files.☆21Apr 3, 2024Updated last year
- donLoader is a shellcode loader creation tool that uses donut to convert executable payloads into shellcode to evade detection on disk.☆20Nov 24, 2021Updated 4 years ago
- The long shadow to emerge as other Git repositories☆18Jul 8, 2024Updated last year
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆136Dec 22, 2024Updated last year
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆82Jun 25, 2025Updated 7 months ago
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Dec 20, 2023Updated 2 years ago
- Terminate the eventlog thread to disable the windows eventlog☆21Apr 1, 2020Updated 5 years ago