smokeme / ProxyNotShellLinks
☆19Updated 2 years ago
Alternatives and similar repositories for ProxyNotShell
Users that are interested in ProxyNotShell are comparing it to the libraries listed below
Sorting:
- Ntdll Unhooking POC☆19Updated 2 years ago
- Caeser Cipher your shellcode!☆21Updated 3 years ago
- Repository for dirty scripts and PoCs☆18Updated 4 months ago
- Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code☆22Updated 2 years ago
- Example of async client/server sockets in .NET 5☆17Updated 4 years ago
- Find kernel32 base and API addresses. Simple C++ implementation☆24Updated 3 years ago
- Collection of self-made Red Team tools that have come in handy☆11Updated 9 months ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆28Updated last year
- ☆29Updated 2 years ago
- ☆18Updated 8 months ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆40Updated 4 years ago
- A simple BOF implementation of klist using Windows API☆32Updated 2 years ago
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆36Updated last month
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago
- A compilation of Aggressor/Sleep scripts for operational purposes that I've made.☆11Updated 3 years ago
- Cobalt Strike Get clipboard plugin☆14Updated last year
- ☆10Updated last year
- ☆21Updated 3 years ago
- ☆25Updated 2 years ago
- Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"☆28Updated 2 years ago
- This project is created for research into antivirus evasion by unhooking.☆15Updated 3 years ago
- havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…☆12Updated 2 years ago
- BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆15Updated 2 years ago
- PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…☆21Updated last week
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆12Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated 2 years ago
- Used to AES encrypt shellcode, can take password or use built in default should be used with Iron Injector to generate and execute shellc…☆15Updated 3 years ago
- One gate to all syscalls!☆23Updated 3 years ago
- A PoC executing shellcode in Dart☆15Updated 2 years ago