susMdT / AceLdrLinks
Cobalt Strike UDRL for memory scanner evasion.
☆51Updated last year
Alternatives and similar repositories for AceLdr
Users that are interested in AceLdr are comparing it to the libraries listed below
Sorting:
- Click Once + App Domain☆62Updated last year
- Beacon Object Files (not Buffer Overflows)☆55Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆27Updated 11 months ago
- ☆27Updated 4 months ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated last year
- Rust template/library for implementing your own COFF loader☆50Updated 4 months ago
- Execute dotnet app from unmanaged process☆75Updated 5 months ago
- Modified versions of the Cobalt Strike Process Injection Kit☆94Updated last year
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- BypassCredGuard CS BOF☆39Updated 4 months ago
- A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation☆16Updated 5 months ago
- ☆52Updated 5 months ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- A care package of useful bofs for red team engagments☆55Updated 5 months ago
- ☆44Updated 3 weeks ago
- Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform☆16Updated last year
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆37Updated 8 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆28Updated 4 months ago
- ☆40Updated this week
- ☆96Updated 9 months ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆18Updated 2 years ago
- A VSCode plugin to assist with BOF development.☆36Updated 9 months ago
- Using LNK files and user input simulation to start processes under explorer.exe☆25Updated 8 months ago
- Rewrite to fit my needs☆28Updated 10 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆70Updated last year
- Proxy function calls through the thread pool with ease☆28Updated 3 months ago
- Post-Ex BOF tooling for Hannibal☆22Updated 6 months ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated last year