mjwhitta / win

Related projects: ⓘ

• zlowram / gopart
  Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.
  ☆12Updated 4 years ago
• timwhitez / Doge-Persist
  Windows Persistence Collection
  ☆12Updated 3 years ago
• audibleblink / xordump
  ☆18Updated 3 years ago
• Gh057Pr1nc3 / smb_scanner
  Tool scan EternalBlue by golang
  ☆22Updated 5 years ago
• audibleblink / dummyDLL
  Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.
  ☆41Updated last year
• jonas-koeritz / amsi
  Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)
  ☆11Updated 2 years ago
• nicholasvg / RunPE-Process-Hollowing-GO
  Thanks to @d35ha
  ☆10Updated 3 years ago
• timwhitez / Freeze-Common
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Updated last year
• Snowming04 / inject_shellcode_message_hook
  inject shellcode into remote process via message hook
  ☆15Updated 3 years ago
• C-Sto / dnsfwd
  Are you forwarding DNS traffic to another server for some reason, but want to make sure only queries for certain names are passed? Say no…
  ☆19Updated last year
• bodgit / ntlmssp
  Golang library implementing NTLM
  ☆13Updated last month
• theRealestAEP / GoLang
  Pure Go lang cryptor and shellcode injector
  ☆19Updated 3 years ago
• 0x3rhy / GetClipboard
  Cobalt Strike Get clipboard plugin
  ☆12Updated last year
• tooBugs / golang-ReflectiveDLLInjection
  ☆31Updated this week
• RDPUploader / RDPUploader
  Source code RDPUploader
  ☆18Updated 5 years ago
• timwhitez / Doge-EGGCall
  Like Hell's Gate but more EGG :)
  ☆20Updated 2 years ago
• timwhitez / Doge-BlockDLLs
  Preventing 3rd Party DLLs from Injecting into your Malware
  ☆24Updated 3 years ago
• Synzack / Go-Syscall-Examples
  Simple PoCs for utilizing Windows syscalls in Go
  ☆16Updated 3 years ago
• ch3rn0byl / HookedRDP
  ☆49Updated 4 years ago
• jojonas / db_nmap
  Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.
  ☆16Updated 11 months ago
• hack2fun / EventLogBypass
  Terminate the eventlog thread to disable the windows eventlog
  ☆20Updated 4 years ago
• vysecurity / WindfarmDynamite-CNA
  CobaltStrike Aggressor Script to utilise FuzzySec's Windows Notification Framework Research to Spawn a Shell under Explorer.exe
  ☆15Updated 5 years ago
• zu1k / beacon_hook_bypass_memscan
  works but not work, cao!
  ☆24Updated 3 years ago
• wahyuhadi / beacon-c2-go
  backdoor c2
  ☆38Updated 4 years ago
• clod81 / loader_process_hollow_copy_in_chunk
  About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
  ☆12Updated 2 years ago
• dmaasland / cobaltstrike-authfile-decrypt
  ☆34Updated this week
• parsiya / evil-electron
  Backdoored Electron app.asar
  ☆15Updated 3 years ago
• timwhitez / Doge-Whisper
  golang implementation of Syswhisper2/Syswhisper3
  ☆23Updated 2 years ago
• wafinfo / SyscallLoader
  SyscallLoader
  ☆9Updated 3 years ago
• jas502n / DriveLife-PsTrojan
  TrojanDropper/PS.Maloader.d
  ☆12Updated 2 years ago