Spoof the return address of any function call.
☆11Jul 21, 2024Updated last year
Alternatives and similar repositories for RetSpoofer
Users that are interested in RetSpoofer are comparing it to the libraries listed below
Sorting:
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆15Apr 21, 2025Updated 10 months ago
- Near compile-time string obfuscation for Golang☆13Oct 3, 2023Updated 2 years ago
- Utilizing DLang For Offensive Operations.☆14May 29, 2025Updated 9 months ago
- Kill malawarebytes process. Can be ported to any programming language.☆12Apr 21, 2025Updated 10 months ago
- golang decryption poc of the new app bound encryption introduced in chrome version 127.☆22Nov 4, 2024Updated last year
- Shellcode encoder&loader written in Go language, which can encrypt binary or PE files. It offers a variety of complex encryption algorith…☆20May 24, 2024Updated last year
- extract chromium-based browser's cookies using chrome's remote debugging without admin rights☆22Nov 3, 2024Updated last year
- Reverse engineering malware samples☆16Dec 3, 2021Updated 4 years ago
- 💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby☆10Apr 21, 2025Updated 10 months ago
- HardwareTurningPoint, Fully Go Compatible Hardware Breakpoint☆16Jan 30, 2025Updated last year
- Decrypting and intercepting encrypted imports of Vanguards Kernel Driver☆35Feb 13, 2024Updated 2 years ago
- Enable-All-Tokens is a Go-based project designed to adjust and enable a list of specified privileges for the current process token on a W…☆10Apr 21, 2025Updated 10 months ago
- POC for your p2c "unique loader build"☆13Jun 28, 2024Updated last year
- This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…☆16Dec 21, 2021Updated 4 years ago
- GolangStyle, best looking go library.☆13Apr 21, 2025Updated 10 months ago
- POC kernel driver with hidden system thread☆13May 14, 2024Updated last year
- A malicous Golang Package☆15Apr 21, 2025Updated 10 months ago
- Measures average CPU cycles for the CPUID instruction to detect if the code is running in a VM by comparing against a threshold.☆21Apr 21, 2025Updated 10 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆26Apr 21, 2025Updated 10 months ago
- Golang Implementation of Hell's gate☆21May 31, 2023Updated 2 years ago
- Examples how to use a Assm (Assembly) in a go.☆23Apr 21, 2025Updated 10 months ago
- A mutliple tactics to execute shellcode in go :}☆23Apr 21, 2025Updated 10 months ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆22Feb 19, 2023Updated 3 years ago
- ☆29Dec 29, 2022Updated 3 years ago
- Best Repo for learn DDOS ( Send me Stars ⭐ )☆36Feb 5, 2026Updated 3 weeks ago
- Parent Process ID Spoofing, coded in CGo.☆24Apr 21, 2025Updated 10 months ago
- A fork of the Go language with some tweaks☆56Jan 29, 2025Updated last year
- A tool written in golang which compress using UPX and patch it with the provided PE file to make "UPX -d" flag impossible to decompress a…☆31Jan 2, 2025Updated last year
- Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project☆44Mar 6, 2025Updated 11 months ago
- ☆37Nov 8, 2024Updated last year
- Discord HTTP requests interception POC, including backup codes requests, for educational purposes only.☆25Jul 11, 2024Updated last year
- Minimal patch guard for linux kernel☆31Oct 15, 2020Updated 5 years ago
- Ransomware written in go, encrypt - decrypt.☆30Apr 27, 2025Updated 10 months ago
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Aug 31, 2021Updated 4 years ago
- A resource for thread hijacking and manual mapping code, that works with MEM_MAPPED & MEM_IMAGE.☆26Apr 17, 2021Updated 4 years ago
- A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal builder.☆84Sep 27, 2025Updated 5 months ago
- Exodus and Atomic crypto wallets app.asar injection POC (captures mnemonic and password) for educational purposes only.☆26Jul 3, 2024Updated last year
- Go keylogger for Windows, logging keyboard input to a file using Windows API functions, and it is released under the Unlicense.☆28Apr 21, 2025Updated 10 months ago
- ☆29Oct 19, 2024Updated last year