pard0p / PICO-ImplantLinks
PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This project demonstrates that It's possible to build a multi-stage and modular C2 implant made of PICOs.
☆38Updated 2 months ago
Alternatives and similar repositories for PICO-Implant
Users that are interested in PICO-Implant are comparing it to the libraries listed below
Sorting:
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆124Updated last month
- ☆126Updated last year
- ☆100Updated last year
- a BOF implementation of various registry persistence methods☆92Updated 2 months ago
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆180Updated 2 months ago
- A BOF that's a BOF Loader☆157Updated last month
- Cobalt Strike UDRL for memory scanner evasion.☆52Updated 2 years ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Updated 2 months ago
- Threadless shellcode injection tool☆67Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆144Updated 11 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆55Updated 2 weeks ago
- ☆35Updated last year
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆105Updated 8 months ago
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆81Updated last week
- ☆49Updated 8 months ago
- Lateral movement with DCOM DLL hijacking☆174Updated 6 months ago
- ForsHops☆59Updated 9 months ago
- ☆100Updated 2 years ago
- Modern PIC implant for Windows (64 & 32 bit)☆104Updated 5 months ago
- Arsenal of modules to beacon postex formats like BOF/Shellcode including: dotnet in memory execution, lateral moviment (scm, winrm, dcom,…☆90Updated last month
- converts sRDI compatible dlls to shellcode☆34Updated 11 months ago
- ☆54Updated 7 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆54Updated 7 months ago
- Local SYSTEM auth trigger for relaying - X☆155Updated 5 months ago
- Linker for Beacon Object Files☆145Updated 2 weeks ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Updated 8 months ago
- ☆49Updated 7 months ago
- remote process injections using pool party techniques☆69Updated 6 months ago
- ☆86Updated 11 months ago
- ☆121Updated 11 months ago