nbaertsch / Shrike
Hunting and injecting RWX 'mockingjay' DLLs in pure nim
☆57Updated 3 months ago
Alternatives and similar repositories for Shrike:
Users that are interested in Shrike are comparing it to the libraries listed below
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆69Updated 10 months ago
- ☆48Updated last year
- BOF for C2 framework☆40Updated 4 months ago
- Rust template/library for implementing your own COFF loader☆49Updated 2 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆56Updated 4 months ago
- BOF to decrypt Signal Desktop chat logs☆65Updated last month
- remote process injections using pool party techniques☆56Updated last month
- ☆27Updated 3 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 8 months ago
- ☆25Updated last month
- Proxy function calls through the thread pool with ease☆23Updated last month
- Dynamically resolve API function addresses at runtime in a secure manner.☆54Updated 5 months ago
- Sample Rust Hooking Engine☆36Updated 11 months ago
- Tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆37Updated 5 months ago
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆25Updated 9 months ago
- A python script that automates a C2 Profile build☆26Updated this week
- Sniffing files generator☆55Updated last month
- macOS dylib stager☆32Updated 2 months ago
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆30Updated last month
- An advanced utility for converting Windows Portable Executable (PE) files to position-independent code (PIC) shellcode. It enables execut…☆23Updated 3 weeks ago
- ForsHops☆63Updated this week
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆61Updated last year
- ☆54Updated 5 months ago
- Section-based payload obfuscation technique for x64☆59Updated 7 months ago
- malleable profile generator GUI for Havoc☆56Updated last year
- Shellcode Loader Utilizing ETW Events☆60Updated last month
- Windows Thread Pool Injection Havoc Implementation☆28Updated last year
- Example of using Sleep to create better named pipes.☆41Updated last year
- Bunch of BOF files☆30Updated 3 months ago
- ☆59Updated last year