maxDcb / C2Core
Core Submodule of Exploration C2
☆16Updated 3 weeks ago
Alternatives and similar repositories for C2Core:
Users that are interested in C2Core are comparing it to the libraries listed below
- Windows C++ Implant for Exploration C2☆29Updated last month
- ☆36Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆40Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆46Updated last year
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆34Updated 3 years ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.☆47Updated last year
- ☆27Updated 3 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- Beacon Debugger☆40Updated 5 months ago
- Execute dotnet app from unmanaged process☆73Updated 3 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- Sliver agent rewritten in C++☆44Updated 7 months ago
- BypassCredGuard CS BOF☆38Updated 3 months ago
- BYOVD collection☆23Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆23Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆62Updated last year
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆44Updated 2 years ago
- ForsHops☆41Updated last month
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆22Updated 11 months ago
- Artemis - C++ Hell's Gate Syscall Implementation☆32Updated last year
- A simple PoC of injection shellcode into a remote process and get the output using namepipe☆42Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆48Updated 3 months ago
- Go Shellcode Loader to be Integrated in Exploration C2☆26Updated 2 months ago
- stack spoofing☆84Updated 5 months ago
- ☆30Updated last month
- ☆69Updated last year
- converts sRDI compatible dlls to shellcode☆23Updated 3 months ago
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆39Updated 8 months ago