pard0p / LibWinHttpLinks
LibWinHttp is a simplified WinHTTP wrapper designed as a Crystal Palace shared library for implant development. Its primary purpose is to facilitate the development of PICO modules that require HTTP/HTTPS transport layer communication.
☆29Updated last week
Alternatives and similar repositories for LibWinHttp
Users that are interested in LibWinHttp are comparing it to the libraries listed below
Sorting:
- Callstack spoofing using a VEH because VEH all the things.☆23Updated 7 months ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆61Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆60Updated last year
- Beacon Debugger☆55Updated last year
- shell code example☆63Updated 2 weeks ago
- API Hammering with C++20☆49Updated 3 years ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆129Updated 2 months ago
- a demo module for the kaine agent to execute and inject assembly modules☆42Updated last year
- In-memory hiding technique☆57Updated 10 months ago
- Self-cleaning in-memory PICO loader for Crystal Palace. Automatically erases traces and operates entirely in memory for stealthy payload …☆44Updated last week
- ☆51Updated 3 weeks ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …☆19Updated 8 months ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆65Updated 2 years ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆26Updated 7 months ago
- A bunch of shenanigans using functions, VEH and more☆37Updated 5 months ago
- Arsenal of modules to beacon postex formats like BOF/Shellcode including: dotnet in memory execution, lateral moviment (scm, winrm, dcom,…☆64Updated 2 weeks ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆44Updated 2 years ago
- Shellcode Loader Utilizing ETW Events☆67Updated 8 months ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆31Updated last year
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆101Updated 2 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆68Updated this week
- A C# implementation that disables Windows Firewall bypassing UAC☆16Updated last year
- Various methods of executing shellcode☆72Updated 2 years ago
- Win32 keylogger that supports all (non-ime using) languages correctly☆52Updated last year
- Exploiting the KsecDD Windows driver through Server Silos☆75Updated last year
- Extensible Position Independent Code – shellcode (C/C++) development and building toolkit designed for developer experience, predictabili…☆69Updated this week
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated 4 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆62Updated last year