☆154Aug 17, 2020Updated 5 years ago
Alternatives and similar repositories for firewalker
Users that are interested in firewalker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool for interacting with outlook interop during red team engagements☆145Jun 29, 2021Updated 5 years ago
- D/Invoke port of UrbanBishop☆108Jul 19, 2020Updated 5 years ago
- ☆38Oct 12, 2020Updated 5 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆193Mar 26, 2020Updated 6 years ago
- Project to check which Nt/Zw functions your local EDR is hooking☆201Mar 21, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Evading WinDefender ATP credential-theft☆256Dec 2, 2019Updated 6 years ago
- ☆53Oct 20, 2020Updated 5 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆274May 3, 2023Updated 3 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123May 22, 2021Updated 5 years ago
- Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…☆600Jul 26, 2021Updated 4 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆79Feb 27, 2020Updated 6 years ago
- Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.☆188Feb 11, 2021Updated 5 years ago
- A C port of b33f's UrbanBishop☆38Oct 1, 2020Updated 5 years ago
- A PowerShell script to prevent Sysmon from writing its events☆17Apr 23, 2020Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆51Sep 18, 2020Updated 5 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆219Jul 14, 2021Updated 4 years ago
- My CobaltStrike BOFS☆167Jul 23, 2022Updated 3 years ago
- Universal Unhooking☆326Sep 19, 2018Updated 7 years ago
- .Net Assembly to block ETW telemetry in current process☆81May 14, 2020Updated 6 years ago
- Remove API hooks from a Beacon process.☆284Sep 18, 2021Updated 4 years ago
- A C# tool to search through a running instance of Outlook for keywords☆111Jan 14, 2021Updated 5 years ago
- A simple COM server which provides a component to run shellcode☆143May 12, 2020Updated 6 years ago
- Ps-Tools, an advanced process monitoring toolkit for offensive operations☆355Dec 1, 2020Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll☆511Feb 3, 2022Updated 4 years ago
- ☆263Apr 10, 2023Updated 3 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆1,205Jul 5, 2023Updated 2 years ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)☆320Nov 9, 2021Updated 4 years ago
- Silence EDRs by removing kernel callbacks☆240Dec 7, 2020Updated 5 years ago
- Enumerate and disable common sources of telemetry used by AV/EDR.☆853Mar 11, 2021Updated 5 years ago
- ☆71Nov 20, 2020Updated 5 years ago
- Create a minidump of the LSASS process from memory☆259Nov 2, 2022Updated 3 years ago
- C# port of the Get-AppLockerPolicy PS cmdlet☆99Dec 8, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Collection of beacon BOF written to learn windows and cobaltstrike☆364Feb 24, 2023Updated 3 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆122Jun 24, 2020Updated 6 years ago
- Collection of Beacon Object Files☆641Nov 1, 2022Updated 3 years ago
- RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, …☆500Jan 25, 2022Updated 4 years ago
- Project to enumerate proxy configurations and generate shellcode from CobaltStrike☆139Nov 4, 2020Updated 5 years ago
- Apply a filter to the events being reported by windows event logging☆264Apr 24, 2021Updated 5 years ago
- AMSI Bypass Via the Heap☆107Nov 20, 2020Updated 5 years ago