Thanks to @d35ha
☆13Aug 16, 2021Updated 4 years ago
Alternatives and similar repositories for RunPE-Process-Hollowing-GO
Users that are interested in RunPE-Process-Hollowing-GO are comparing it to the libraries listed below
Sorting:
- Its a coff loader ported to go☆20Oct 2, 2022Updated 3 years ago
- ☆18Aug 15, 2021Updated 4 years ago
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆32Mar 22, 2022Updated 3 years ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Sep 28, 2022Updated 3 years ago
- use shellcode as asm function☆23Mar 29, 2022Updated 3 years ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆47Mar 4, 2023Updated 3 years ago
- execute a PE in the address space of another PE aka process hollowing☆60Dec 2, 2021Updated 4 years ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Dec 16, 2021Updated 4 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆13Jul 14, 2022Updated 3 years ago
- DPX - the Doge Packer for eXecutables☆30Dec 21, 2021Updated 4 years ago
- This is learning to write windows 32 api instance code in the golang language☆42Jan 14, 2022Updated 4 years ago
- desktop screenshot☆29Apr 26, 2023Updated 2 years ago
- 基于wappalyzer指纹库、chromedp框架对网站进行指纹识别☆13Mar 17, 2025Updated 11 months ago
- ☆26Jun 19, 2022Updated 3 years ago
- Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim☆32Jun 2, 2021Updated 4 years ago
- cs4.0 cs 4.1 beacon加解密☆25Mar 29, 2021Updated 4 years ago
- ☆14Sep 2, 2021Updated 4 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Sep 30, 2022Updated 3 years ago
- ☆88Jun 28, 2022Updated 3 years ago
- blackrock cipher based on masscan☆36Aug 21, 2023Updated 2 years ago
- 杂 物 收 纳☆15Aug 4, 2023Updated 2 years ago
- GoLang sys全端口扫描☆13Jan 25, 2022Updated 4 years ago
- Beacon Object File implementation of Event Viewer deserialization UAC bypass☆133May 6, 2022Updated 3 years ago
- Golang implementation of Reflective load PE from memory☆64Jan 10, 2022Updated 4 years ago
- Dirfuzz by golang☆15Feb 28, 2023Updated 3 years ago
- Using the Windows API to mess with Task Manager in GoLANG☆15Sep 7, 2021Updated 4 years ago
- ☆35Jul 5, 2020Updated 5 years ago
- Hikvision log4j PoC☆65Dec 29, 2022Updated 3 years ago
- Go实现部分Rubeus功能,可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等☆142May 5, 2022Updated 3 years ago
- ☆18Aug 8, 2024Updated last year
- Phantom DLL Hollowing method implemented in modmap☆18Jun 9, 2021Updated 4 years ago
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆21Feb 13, 2023Updated 3 years ago
- windows task scheduler in golang☆29Sep 6, 2021Updated 4 years ago
- Like Hell's Gate but more EGG :)☆20Mar 11, 2022Updated 3 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆115Jun 7, 2021Updated 4 years ago
- This project is created for research into antivirus evasion by unhooking.☆18Sep 2, 2021Updated 4 years ago
- Golang packer that use process hollowing☆19May 1, 2022Updated 3 years ago
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆23Sep 15, 2021Updated 4 years ago
- Windows API/constants, identity, and WinHTTP/WinINet for Go.☆19Jan 13, 2026Updated last month