nbaertsch / nimvokeLinks
Indirect syscalls + DInvoke made simple.
☆94Updated 8 months ago
Alternatives and similar repositories for nimvoke
Users that are interested in nimvoke are comparing it to the libraries listed below
Sorting:
- malware written for educational purposes☆67Updated 10 months ago
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆84Updated 2 months ago
- NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.☆30Updated last year
- Sleep obfuscation for shellcode implants and their reflective shit☆52Updated 2 years ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆129Updated 2 months ago
- A hoontr must hoont☆94Updated last month
- EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.☆245Updated this week
- A python script that automates a C2 Profile build☆44Updated 2 weeks ago
- PoC XLL builder in Python/Nim☆47Updated 2 years ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆161Updated 2 months ago
- Impersonate Tokens using only NTAPI functions☆80Updated 5 months ago
- ForsHops☆149Updated 5 months ago
- Installing wazuh SIEM Unified XDR and SIEM protection☆30Updated 3 months ago
- Bypass user-land hooks by syscall tampering via the Trap Flag☆115Updated 3 weeks ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 5 months ago
- Windows Thread Pool Injection Havoc Implementation☆32Updated last year
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆126Updated last month
- ☆57Updated 7 months ago
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆51Updated 4 months ago
- ☆135Updated 7 months ago
- A small How-To on creating your own weaponized WSL file☆115Updated last month
- Permanently disable EDRs as local admin☆102Updated 2 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆98Updated 4 months ago
- ☆53Updated 3 months ago
- Situational Awareness script to identify how and where to run implants☆65Updated 9 months ago
- Threadless shellcode injection tool☆67Updated last year
- Find DLLs with RWX section☆81Updated 2 years ago
- Blog/Journal on how to backdoor VSCode extensions☆73Updated 2 months ago
- Terms of Use Conditional Access M365 Evilginx Phishlet☆41Updated 3 months ago
- AzureAD beacon object files☆126Updated 9 months ago