pard0p / PICO-ImplantLinks
PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This project demonstrates that It's possible to build a multi-stage and modular C2 implant made of PICOs.
☆40Updated 2 months ago
Alternatives and similar repositories for PICO-Implant
Users that are interested in PICO-Implant are comparing it to the libraries listed below
Sorting:
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆126Updated last month
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆181Updated 3 months ago
- a BOF implementation of various registry persistence methods☆94Updated 2 months ago
- ☆126Updated last year
- ☆100Updated last year
- Threadless shellcode injection tool☆68Updated last year
- ☆100Updated 2 years ago
- A BOF that's a BOF Loader and more☆193Updated 2 weeks ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆54Updated 8 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆60Updated last month
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆63Updated last year
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Updated 3 months ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆42Updated 2 years ago
- ☆55Updated 8 months ago
- Linker for Beacon Object Files☆146Updated last week
- ☆35Updated last year
- Tool to bypass LSA Protection (aka Protected Process Light)☆64Updated last year
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆88Updated 3 weeks ago
- Lateral movement with DCOM DLL hijacking☆176Updated 6 months ago
- A process injection technique using only thread context manipulation☆40Updated 2 years ago
- ☆49Updated 8 months ago
- remote process injections using pool party techniques☆70Updated 7 months ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆176Updated 2 weeks ago
- PrimitiveInjection by using Read, Write and Allocation Primitives.☆53Updated 7 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆105Updated 6 months ago
- UDC2 implementation that provides an ICMP C2 channel☆115Updated 2 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆113Updated 2 weeks ago
- Arsenal of modules to beacon postex☆94Updated 2 months ago
- converts sRDI compatible dlls to shellcode☆35Updated last year
- Cobalt Strike UDRL for memory scanner evasion.☆52Updated 2 years ago