Position-independent Reflective Loader for macOS
☆118Feb 19, 2026Updated last week
Alternatives and similar repositories for macho-loader
Users that are interested in macho-loader are comparing it to the libraries listed below
Sorting:
- ☆126Sep 1, 2024Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆283Sep 18, 2024Updated last year
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆137Dec 7, 2025Updated 2 months ago
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- Lateral Movement via the .NET Profiler☆100Nov 21, 2024Updated last year
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- Linker for Beacon Object Files☆159Feb 22, 2026Updated last week
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- Beacon Object File (BOF) Template☆64Feb 6, 2026Updated 3 weeks ago
- A set of programs for analyzing common vulnerabilities in COM☆248Sep 8, 2024Updated last year
- Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread☆263Aug 31, 2025Updated 6 months ago
- Mentally ill EtwTi parser☆68Jan 11, 2026Updated last month
- An example reference design for a proposed BOF PE☆200Jan 23, 2026Updated last month
- ☆64May 31, 2024Updated last year
- A runtime for developing large-scale and complex shellcode.☆22Feb 15, 2026Updated 2 weeks ago
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Jun 18, 2022Updated 3 years ago
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆261Oct 16, 2024Updated last year
- ☆121Nov 21, 2024Updated last year
- A COFF Loader written in Rust☆138Dec 1, 2025Updated 3 months ago
- Tools for analyzing EDR agents☆277Jun 10, 2024Updated last year
- ☆123Oct 9, 2023Updated 2 years ago
- ☆44Oct 16, 2023Updated 2 years ago
- BOF with Synthetic Stackframe☆225Oct 30, 2025Updated 4 months ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆186Jan 17, 2026Updated last month
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆79Aug 5, 2024Updated last year
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆158Mar 26, 2025Updated 11 months ago
- A BOF that runs unmanaged PEs inline☆681Oct 23, 2024Updated last year
- Crystal Palace library for proxying Nt API calls via the Threadpool☆99Oct 18, 2025Updated 4 months ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Mythic C2 Agent written in x64 PIC C☆85Jan 29, 2025Updated last year
- Finding Truth in the Shadows☆123Jan 26, 2023Updated 3 years ago
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 7 months ago
- TypeLib persistence technique☆140Oct 22, 2024Updated last year
- Windows rootkit designed to work with BYOVD exploits☆216Jan 18, 2025Updated last year
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆63Mar 19, 2024Updated last year
- Tools for interacting with authentication packages using their individual message protocols☆403Feb 1, 2026Updated last month
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆298Jul 31, 2024Updated last year
- Proof-of-concept code for understanding the allow-jit entitlement on macOS☆30Feb 19, 2026Updated last week