Bake shellcode to get malicious.exe
☆27Jul 25, 2023Updated 2 years ago
Alternatives and similar repositories for 221b
Users that are interested in 221b are comparing it to the libraries listed below
Sorting:
- ☆36Feb 12, 2026Updated 3 weeks ago
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆24Apr 4, 2023Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆15Feb 13, 2024Updated 2 years ago
- ☆12Nov 12, 2023Updated 2 years ago
- Source Code Management Attack Toolkit☆13Aug 1, 2022Updated 3 years ago
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆12May 31, 2024Updated last year
- Nim Shellcode Injector☆15Jan 24, 2021Updated 5 years ago
- A C# Tool to gather information about email breaches☆16Dec 21, 2023Updated 2 years ago
- Just another Process Injection using Process Hollowing technique.☆18Sep 18, 2023Updated 2 years ago
- A collection of Cobalt Strike Aggressor scripts.☆109Jan 3, 2022Updated 4 years ago
- Beacon Object Files used for Cobalt Strike☆19Jul 18, 2023Updated 2 years ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆16May 6, 2024Updated last year
- Obtain a clean-cut architecture at the launch of a mission and run some tests ( subdomain search, fuzzing, make screenshots on a given pe…☆25Jul 18, 2023Updated 2 years ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 7 months ago
- The PoC for CVE-2025-70795 / CVE-2026-0828 and its update☆41Feb 16, 2026Updated 3 weeks ago
- Golang packer that use process hollowing☆19May 1, 2022Updated 3 years ago
- A steganography based shellcode hider to bypass AV☆17Aug 7, 2022Updated 3 years ago
- A PoC to deploy a Sliver Agent with amsi bypass, process injection, hollowing and OpSec☆29Oct 2, 2024Updated last year
- Quickly generate every payload type for each listener and optionally host via HTTP.☆22Aug 23, 2021Updated 4 years ago
- Guide on using the PPPwnGo GUI tool☆11Sep 26, 2024Updated last year
- Nim process hollowing loader☆62Jul 22, 2025Updated 7 months ago
- shellcode loader for your evasion needs☆352Apr 30, 2025Updated 10 months ago
- Proof of concept SMB C2 using named pipes in Golang☆25Sep 8, 2019Updated 6 years ago
- Beacon Object File to locate and suspend the threads hosting the Event Log service☆29Jun 17, 2022Updated 3 years ago
- Some of my custom "tools".☆28Feb 21, 2022Updated 4 years ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆37Oct 1, 2025Updated 5 months ago
- ☆33Mar 19, 2025Updated 11 months ago
- Golang implementation of @CCob's C# ThreadlessInject☆31May 11, 2024Updated last year
- PSHinjector autoscript is a tool that inject shellcode(x64 payload) by powershell with python3 programing☆30May 4, 2020Updated 5 years ago
- A .NET malware loader, using API-Hashing to evade static analysis☆210May 30, 2023Updated 2 years ago
- Convert your shellcode into an ASCII string☆127Jun 27, 2025Updated 8 months ago
- Default plugins for Jaeles Scanner☆35Nov 5, 2020Updated 5 years ago
- Load PE via XML Attribute☆32Feb 1, 2020Updated 6 years ago
- Finding SSL Blindspots for Red Teams☆34Jul 28, 2020Updated 5 years ago
- BOF/COFF obj file to PIC(shellcode). by golang☆39Sep 28, 2022Updated 3 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆34Sep 15, 2022Updated 3 years ago
- An example of COM hijacking using a proxy DLL.☆44Aug 17, 2021Updated 4 years ago
- Simple PowerShell Base64 encoder to avoid detection of your malicious payload☆82Jun 5, 2018Updated 7 years ago
- Remote Template Injection Toolkit☆48Apr 7, 2024Updated last year