A Windows Named Pipe Multi-tool / Proxy
☆343Dec 7, 2025Updated 6 months ago
Alternatives and similar repositories for pipetap
Users that are interested in pipetap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆111Aug 21, 2024Updated last year
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆127Dec 23, 2025Updated 6 months ago
- CVE-2025-59501 POC code☆26Nov 20, 2025Updated 7 months ago
- A cross-platform C++ framework for building Windows shellcode☆179Apr 21, 2026Updated 2 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆71Dec 25, 2025Updated 6 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.☆17Feb 27, 2024Updated 2 years ago
- This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.☆300May 23, 2026Updated last month
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆96Jul 3, 2025Updated 11 months ago
- Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool☆338Nov 20, 2025Updated 7 months ago
- Local SYSTEM auth trigger for relaying☆172Jul 22, 2025Updated 11 months ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆285Sep 18, 2024Updated last year
- A set of programs for analyzing common vulnerabilities in COM☆262Sep 8, 2024Updated last year
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆194May 23, 2026Updated last month
- PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…☆55Nov 9, 2025Updated 7 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Local SYSTEM auth trigger for relaying - X☆158Jul 23, 2025Updated 11 months ago
- .NET tool used to enrich RPC telemetry☆102Jan 24, 2026Updated 5 months ago
- Async BOF implementation of 'Rubeus monitor' to detect and automatically extract Kerberos TGTs as they appear on a target system.☆125Jun 10, 2026Updated 2 weeks ago
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆144Nov 17, 2025Updated 7 months ago
- Reverse engineering winapi function loadlibrary.☆244Apr 17, 2023Updated 3 years ago
- ☆26Jul 15, 2023Updated 2 years ago
- Proof of concept for Kerberos Armoring abuse.☆86Dec 12, 2025Updated 6 months ago
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆102Jan 2, 2026Updated 5 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆57Dec 30, 2025Updated 5 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆309Jul 31, 2024Updated last year
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆196Feb 6, 2025Updated last year
- .data ptr swapper for newer win32k versions. (Supports Windows 11)☆37Jan 19, 2026Updated 5 months ago
- Set of PoC to abuse Windows minifilters functionality☆90May 1, 2026Updated last month
- ☆127Sep 1, 2024Updated last year
- "Service-less" driver loading☆188Nov 28, 2024Updated last year
- Python tool to automatically perform SPN-less RBCD attacks.☆131Jan 7, 2026Updated 5 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆64Nov 8, 2024Updated last year
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆360Aug 11, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 11 months ago
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆285May 28, 2026Updated last month
- Aims to identify sleeping beacons☆671Jan 25, 2026Updated 5 months ago
- Polymorphic PE rewriter for Windows x64 , rewrites binaries into semantically identical but byte-different variants☆187Jun 6, 2026Updated 3 weeks ago
- An example of an external LLVM plugin module transform pass for the latest versions.☆15Oct 21, 2025Updated 8 months ago
- SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…☆453Nov 3, 2025Updated 7 months ago
- PoC Implementation of a fully dynamic call stack spoofer☆967Jul 20, 2024Updated last year