nixpal / shellsiloLinks
SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the process of constructing and utilizing structures, assigning variables, and making system calls. With this tool, integrating strings into your shellcode and initializing Unicode strings has never been easier.
☆153Updated 5 months ago
Alternatives and similar repositories for shellsilo
Users that are interested in shellsilo are comparing it to the libraries listed below
Sorting:
- Stage 0☆168Updated last year
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆214Updated last year
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆182Updated 9 months ago
- Port of Cobalt Strike's Process Inject Kit☆190Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆194Updated last year
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆139Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆149Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆155Updated last year
- Adversary Emulation Framework☆128Updated 6 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆196Updated 11 months ago
- ☆159Updated last year
- Local & remote Windows DLL Proxying☆169Updated last year
- ☆198Updated 9 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆164Updated 5 months ago
- SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.☆258Updated 8 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆211Updated last year
- Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.☆249Updated this week
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆151Updated 9 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆127Updated last year
- Evasive Payload Delivery Server & C2 Redirector☆112Updated 2 months ago
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆205Updated 2 years ago
- Ghosting-AMSI☆220Updated 8 months ago
- A hoontr must hoont☆102Updated last month
- Leverage WindowsApp createdump tool to obtain an lsass dump☆153Updated last year
- ☆215Updated last year
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆187Updated 8 months ago
- A Mythic agent for Windows written in C☆148Updated this week
- Weaponizing DCOM for NTLM Authentication Coercions☆182Updated 2 months ago
- Windows Persistence IT-Security☆108Updated 9 months ago
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆181Updated 2 weeks ago