oiweiwei / go-msrpc
The DCE/RPC / MS-RPC Codegen/Client for Go
☆35Updated last week
Related projects: ⓘ
- A PoC package for hosting the CLR and executing .NET from Go☆65Updated 2 months ago
- 🔎🪲 Malleable C2 profiles parser and assembler written in golang☆58Updated 4 months ago
- A library to make HTTP requests with the Windows winhttp API☆20Updated 7 months ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆111Updated 3 years ago
- Go implementation of the Heaven's Gate technique☆92Updated 3 years ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.☆139Updated this week
- Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.☆41Updated last year
- Reflectively load PE☆101Updated 4 years ago
- ☆94Updated 11 months ago
- Extracts TEXT section of a PE, ELF, or Mach-O executable to shellcode☆101Updated last year
- ☆132Updated last year
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆69Updated 7 months ago
- Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.☆32Updated last year
- This project will guide yout to awareness of injection in almost every window API and process.☆22Updated 2 years ago
- To audit the security of read-only domain controllers☆112Updated 9 months ago
- Library of BOFs to interact with SQL servers☆143Updated 3 months ago
- Savoir is a tool to perform tasks during internal security assessment☆17Updated 2 years ago
- Golang Direct Syscall☆30Updated 3 years ago
- Golang implementation of @CCob's C# ThreadlessInject☆30Updated 4 months ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆94Updated 3 years ago
- Golang evasion tool, execute-assembly .Net file☆93Updated 2 years ago
- Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.☆134Updated 2 years ago
- Load and execute a common object file format (COFF) in the current process☆21Updated 6 months ago
- ☆32Updated last year
- ☆125Updated this week
- ☆99Updated this week
- AV/EDR evasion via direct system calls.☆98Updated 9 months ago
- ☆140Updated last year
- Perform DCSync operation without mimikatz☆136Updated 2 years ago
- Process injection techniques written in Go.☆61Updated last year