silentwarble / hbin_templateLinks
Post-Ex BOF tooling for Hannibal
☆22Updated 7 months ago
Alternatives and similar repositories for hbin_template
Users that are interested in hbin_template are comparing it to the libraries listed below
Sorting:
- Cobalt Strike UDRL for memory scanner evasion.☆51Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆61Updated last year
- ☆49Updated 3 weeks ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 4 months ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆50Updated 5 months ago
- Rust template/library for implementing your own COFF loader☆50Updated 4 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆27Updated 2 months ago
- Proxy function calls through the thread pool with ease☆29Updated 3 months ago
- BOF for C2 framework☆41Updated 7 months ago
- A process injection technique using only thread context manipulation☆38Updated last year
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆27Updated last year
- ☆23Updated 4 months ago
- ☆31Updated 10 months ago
- Rewrite to fit my needs☆28Updated 11 months ago
- Example of using Sleep to create better named pipes.☆41Updated last year
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆52Updated 2 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- Parser and reconciliation tooling for large Active Directory environments.☆33Updated 4 months ago
- ☆29Updated last year
- Beacon Object Files (not Buffer Overflows)☆56Updated 2 years ago
- Click Once + App Domain☆62Updated last year
- ☆37Updated last week
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆70Updated last year
- ☆32Updated 6 months ago
- Bypassing Amsi using LdrLoadDll☆44Updated 5 months ago
- Section-based payload obfuscation technique for x64☆60Updated 10 months ago
- Dump LSASS by spoofing command line arguments to procdump.☆19Updated 8 months ago
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆56Updated 3 months ago
- converts sRDI compatible dlls to shellcode☆29Updated 5 months ago