Process Injection Techniques with Golang
☆80May 29, 2020Updated 5 years ago
Alternatives and similar repositories for go-procinject
Users that are interested in go-procinject are comparing it to the libraries listed below
Sorting:
- Process injection techniques written in Go.☆64Jul 1, 2023Updated 2 years ago
- Demo of process injection, using Nt, direct syscall, etc.☆27Sep 29, 2021Updated 4 years ago
- ☆27Jan 16, 2021Updated 5 years ago
- OwOwning with the Windows API Examples and Code. DEFCON Furs 2020 presentation.☆13Jan 18, 2024Updated 2 years ago
- Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process☆230Jul 30, 2020Updated 5 years ago
- Golang implementation of @CCob's C# ThreadlessInject☆31May 11, 2024Updated last year
- Encrypt embedded go files using age.☆49Oct 21, 2021Updated 4 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Sep 30, 2022Updated 3 years ago
- Windows UAC bypass techniques implemented and written in Go☆216Mar 27, 2022Updated 3 years ago
- Thanks to @d35ha☆13Aug 16, 2021Updated 4 years ago
- Allow a Go process to dynamically load .NET assemblies☆150Mar 28, 2020Updated 5 years ago
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆527Oct 12, 2022Updated 3 years ago
- Cobalt Strike teamserver detection.☆16Apr 26, 2021Updated 4 years ago
- A PoC package for hosting the CLR and executing .NET from Go☆78Jul 9, 2024Updated last year
- windows API to hide console window by golang☆35Dec 20, 2021Updated 4 years ago
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆32Mar 22, 2022Updated 3 years ago
- ☆26Dec 29, 2021Updated 4 years ago
- execute a PE in the address space of another PE aka process hollowing☆60Dec 2, 2021Updated 4 years ago
- Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut☆360Sep 8, 2022Updated 3 years ago
- Ntdll Unhooking POC☆19Aug 12, 2022Updated 3 years ago
- ScareCrow loader binary source which easier to read and learn☆25Apr 14, 2022Updated 3 years ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆331Sep 10, 2024Updated last year
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Aug 26, 2021Updated 4 years ago
- A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…☆1,172Feb 25, 2023Updated 3 years ago
- Learning notes of amazing Sliver C2 project.☆25Apr 14, 2023Updated 2 years ago
- Golang anti-vm framework for Red Team and Pentesters☆128Jun 22, 2023Updated 2 years ago
- golang amsi bypass☆30Dec 4, 2021Updated 4 years ago
- Universal Shared Library User-space Loader☆235May 19, 2022Updated 3 years ago
- Etwti-UnhookPOC just for test☆12Aug 23, 2022Updated 3 years ago
- Emulate the handshake packets of an RDP server with python☆15Jun 26, 2018Updated 7 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆115Jun 7, 2021Updated 4 years ago
- Small utility package for manipulating Windows process tokens☆26Apr 26, 2022Updated 3 years ago
- A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines☆45Oct 27, 2022Updated 3 years ago
- WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配☆29Jun 26, 2022Updated 3 years ago
- ☆14Sep 2, 2021Updated 4 years ago
- golang 实现 sqlmap☆27Apr 5, 2021Updated 4 years ago
- 调用Windows Api,绕过杀软添加用户☆36Oct 8, 2020Updated 5 years ago
- dump lsass☆37May 24, 2022Updated 3 years ago
- Proof of concept SMB C2 using named pipes in Golang☆25Sep 8, 2019Updated 6 years ago