Golang malware development library
☆978Dec 13, 2024Updated last year
Alternatives and similar repositories for Coldfire
Users that are interested in Coldfire are comparing it to the libraries listed below
Sorting:
- A framework for constructing self-spreading binaries☆1,019Nov 23, 2023Updated 2 years ago
- A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…☆1,170Feb 25, 2023Updated 3 years ago
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆526Oct 12, 2022Updated 3 years ago
- Golang reverse/bind shell generator☆229Jan 3, 2022Updated 4 years ago
- EGESPLOIT is a golang library for malware development☆339Jan 26, 2017Updated 9 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,873Aug 18, 2023Updated 2 years ago
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆745Aug 18, 2023Updated 2 years ago
- Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions☆494Apr 1, 2021Updated 4 years ago
- A polyglot payload generator☆242Aug 15, 2022Updated 3 years ago
- Open-Source Shellcode & PE Packer☆2,067Feb 3, 2024Updated 2 years ago
- DeimosC2 is a Golang command and control framework for post-exploitation.☆1,151Apr 17, 2025Updated 10 months ago
- Modular C2 framework aiming to ease post exploitation for red teamers.☆194May 22, 2022Updated 3 years ago
- Golang PE injection on windows☆169Aug 2, 2021Updated 4 years ago
- Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut☆360Sep 8, 2022Updated 3 years ago
- Golang library for malware development☆385Nov 20, 2024Updated last year
- Organized list of my malware development resources☆1,700May 16, 2022Updated 3 years ago
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,504Apr 17, 2025Updated 10 months ago
- My experiments in weaponizing Nim (https://nim-lang.org/)☆3,033May 13, 2024Updated last year
- A collection of Offensive Go packages.☆213Mar 11, 2022Updated 3 years ago
- Template-Driven AV/EDR Evasion Framework☆1,777Nov 3, 2023Updated 2 years ago
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,167Sep 29, 2021Updated 4 years ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆992Oct 7, 2022Updated 3 years ago
- framework to rapidly implement custom droppers for all three major operating systems☆704Feb 24, 2024Updated 2 years ago
- Research code & papers from members of vx-underground.☆1,352Dec 7, 2021Updated 4 years ago
- Universal Shared Library User-space Loader☆235May 19, 2022Updated 3 years ago
- ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication☆1,025Mar 13, 2023Updated 2 years ago
- Reflective PE packer.☆1,397Feb 22, 2024Updated 2 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆115Jun 7, 2021Updated 4 years ago
- AV/EDR evasion via direct system calls.☆1,990Jan 1, 2023Updated 3 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,727Jan 16, 2026Updated last month
- evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)☆1,498Dec 21, 2023Updated 2 years ago
- 🕳 godoh - A DNS-over-HTTPS C2☆806Dec 19, 2023Updated 2 years ago
- Sandbox evasion modules written in PowerShell, Python, Go, Ruby, C, C#, Perl, and Rust.☆932Jun 1, 2021Updated 4 years ago
- Adversary Emulation Framework☆10,717Updated this week
- Second Version of The GoBot Botnet, But more advanced.☆757Sep 24, 2021Updated 4 years ago
- Obfuscate Go builds☆5,318Dec 23, 2025Updated 2 months ago
- Load shellcode into a new process☆768Jun 2, 2021Updated 4 years ago
- fireELF - Fileless Linux Malware Framework☆679Apr 17, 2019Updated 6 years ago
- A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire.☆380Aug 13, 2021Updated 4 years ago