silentwarble / Hannibal
Mythic C2 Agent written in x64 PIC C
☆68Updated 2 months ago
Alternatives and similar repositories for Hannibal:
Users that are interested in Hannibal are comparing it to the libraries listed below
- Section-based payload obfuscation technique for x64☆59Updated 7 months ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆102Updated 2 months ago
- ☆98Updated last year
- BOF to decrypt Signal Desktop chat logs☆65Updated last month
- A BOF to enumerate system process, their protection levels, and more.☆115Updated 4 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆60Updated last year
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆81Updated 2 months ago
- ☆54Updated 5 months ago
- ☆95Updated 6 months ago
- Threadless shellcode injection tool☆62Updated 7 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆49Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆61Updated last year
- Lateral Movement via the .NET Profiler☆80Updated 4 months ago
- Rust template/library for implementing your own COFF loader☆49Updated 2 months ago
- ForsHops☆63Updated this week
- lsassdump via RtlCreateProcessReflection and NanoDump☆79Updated 5 months ago
- ☆27Updated 3 months ago
- Rewrite to fit my needs☆27Updated 8 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆83Updated 2 years ago
- I have documented all of the AMSI patches that I learned till now☆71Updated last year
- Create Anti-Copy DRM Malware☆54Updated 7 months ago
- in-process powershell runner for BRC4☆45Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- ☆109Updated 4 months ago
- ☆52Updated 3 months ago
- Sniffing files generator☆55Updated last month
- ☆104Updated last month
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆72Updated last month
- malleable profile generator GUI for Havoc☆56Updated last year
- ☆53Updated 2 months ago