A Windows Named Pipe Multi-tool / Proxy
☆330Dec 7, 2025Updated 5 months ago
Alternatives and similar repositories for pipetap
Users that are interested in pipetap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆109Aug 21, 2024Updated last year
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆129Dec 23, 2025Updated 5 months ago
- CVE-2025-59501 POC code☆26Nov 20, 2025Updated 6 months ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆95Jul 3, 2025Updated 10 months ago
- A cross-platform C++ framework for building Windows shellcode☆176Apr 21, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆68Dec 25, 2025Updated 5 months ago
- A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.☆17Feb 27, 2024Updated 2 years ago
- This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.☆298Updated this week
- Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool☆339Nov 20, 2025Updated 6 months ago
- Local SYSTEM auth trigger for relaying☆171Jul 22, 2025Updated 10 months ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆286Sep 18, 2024Updated last year
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 10 months ago
- A set of programs for analyzing common vulnerabilities in COM☆262Sep 8, 2024Updated last year
- PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…☆54Nov 9, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆189Updated this week
- .NET tool used to enrich RPC telemetry☆102Jan 24, 2026Updated 4 months ago
- Async BOF implementation of 'Rubeus monitor' to detect and automatically extract Kerberos TGTs as they appear on a target system.☆121Apr 22, 2026Updated last month
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆132Nov 17, 2025Updated 6 months ago
- Reverse engineering winapi function loadlibrary.☆242Apr 17, 2023Updated 3 years ago
- ☆25Jul 15, 2023Updated 2 years ago
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆98Jan 2, 2026Updated 4 months ago
- single-threaded event driven sleep obfuscation poc for linux☆38Jun 14, 2025Updated 11 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆56Dec 30, 2025Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆306Jul 31, 2024Updated last year
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆197Feb 6, 2025Updated last year
- .data ptr swapper for newer win32k versions. (Supports Windows 11)☆37Jan 19, 2026Updated 4 months ago
- Set of PoC to abuse Windows minifilters functionality☆84May 1, 2026Updated 3 weeks ago
- ☆127Sep 1, 2024Updated last year
- "Service-less" driver loading☆187Nov 28, 2024Updated last year
- Python tool to automatically perform SPN-less RBCD attacks.☆130Jan 7, 2026Updated 4 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆63Nov 8, 2024Updated last year
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆359Aug 11, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- One-header configurable C++20 COFF loader☆20Jul 21, 2025Updated 10 months ago
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆248Updated this week
- Aims to identify sleeping beacons☆670Jan 25, 2026Updated 4 months ago
- Polymorphic PE rewriter for Windows x64 , rewrites binaries into semantically identical but byte-different variants☆170May 9, 2026Updated 2 weeks ago
- An example of an external LLVM plugin module transform pass for the latest versions.☆15Oct 21, 2025Updated 7 months ago
- SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…☆454Nov 3, 2025Updated 6 months ago
- PoC Implementation of a fully dynamic call stack spoofer☆958Jul 20, 2024Updated last year