nbaertsch / AutoAppDomainHijackLinks
Automated .NET AppDomain hijack payload generation
☆124Updated 4 months ago
Alternatives and similar repositories for AutoAppDomainHijack
Users that are interested in AutoAppDomainHijack are comparing it to the libraries listed below
Sorting:
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆122Updated 8 months ago
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- ☆89Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Construct the payload at runtime using an array of offsets☆63Updated last year
- Local & remote Windows DLL Proxying☆164Updated last year
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆167Updated 3 months ago
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆157Updated last year
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS☆147Updated 4 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆147Updated last year
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆140Updated 3 months ago
- ☆107Updated 4 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆71Updated last year
- PowerShell script to generate ShellCode in various formats☆42Updated 9 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 2 months ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆92Updated 8 months ago
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆129Updated 2 months ago
- C# havoc implant☆100Updated 2 years ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆110Updated last month
- Terminate AV/EDR leveraging BYOVD attack☆87Updated 3 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year
- ☆125Updated last year
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆90Updated last year
- Winsocket for Cobalt Strike.☆98Updated last year
- ☆180Updated 2 months ago
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated last year
- ☆108Updated 3 months ago
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆75Updated 2 months ago