nixpal / shellsilo
SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the process of constructing and utilizing structures, assigning variables, and making system calls. With this tool, integrating strings into your shellcode and initializing Unicode strings has never been easier.
☆128Updated 2 months ago
Alternatives and similar repositories for shellsilo:
Users that are interested in shellsilo are comparing it to the libraries listed below
- Stage 0☆140Updated last month
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆175Updated 3 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆157Updated last month
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 8 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆150Updated last month
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆152Updated last month
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆112Updated 3 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆101Updated 9 months ago
- Just another C2 Redirector using CloudFlare.☆82Updated 8 months ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆149Updated 8 months ago
- Adversary Emulation Framework☆61Updated 5 months ago
- ☆136Updated last month
- A BOF to enumerate system process, their protection levels, and more.☆111Updated last month
- Port of Cobalt Strike's Process Inject Kit☆160Updated last month
- ☆121Updated 4 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆87Updated 7 months ago
- Local & remote Windows DLL Proxying☆161Updated 7 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆133Updated 5 months ago
- Lateral Movement☆122Updated last year
- An interactive shell to spoof some LOLBins command line☆181Updated 11 months ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆179Updated last week
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆147Updated last year
- Two in one, patch lifetime powershell console, no more etw and amsi!☆84Updated 6 months ago
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆123Updated last month
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆151Updated 3 weeks ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆78Updated 4 months ago
- Remotely Enumerate sessions using undocumented Windows Station APIs☆111Updated 4 months ago
- Leverage WindowsApp createdump tool to obtain an lsass dump☆145Updated 4 months ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆118Updated 6 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆141Updated 5 months ago