synap5e / onefile_python

Related projects: ⓘ

• oXis / NimWinAPICustom
  Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim
  ☆30Updated 3 years ago
• S3cur3Th1sSh1t / NimShellcodeFluctuation
  ShellcodeFluctuation PoC ported to Nim
  ☆72Updated last year
• jrrgimenez / Nim-HalosGate-Injector
  Shellcode Injector that obtains system call opcodes using the Halo's Gate method to evade EDR Hooks.
  ☆20Updated 2 years ago
• frkngksl / NimicStack
  NimicStack is the pure Nim implementation of Call Stack Spoofing technique to mimic legitimate programs
  ☆88Updated 2 years ago
• zimnyaa / fiber-stager
  A simple Nim stager (w/ fiber execution)
  ☆14Updated 2 years ago
• OffenseTeacher / Steganim
  ☆47Updated last year
• trainr3kt / NoteThief
  Grab unsaved Notepad contents with a Beacon Object File
  ☆48Updated 2 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆92Updated 3 years ago
• improsec / CaddyStager
  ☆35Updated 2 years ago
• pruno7 / nEkko
  A nim port of C5pider's Ekko project.
  ☆16Updated last year
• Teach2Breach / dev
  maldev obviously
  ☆23Updated 2 months ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 10 months ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆47Updated last year
• m8sec / EAPrimer
  C# project to Reflectively load .Net assemblies in memory
  ☆15Updated 3 months ago
• Hagrid29 / BOF-CredUI
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆18Updated last year
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆27Updated 2 years ago
• guervild / InlineZipper
  ☆21Updated 2 years ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆39Updated last year
• zimnyaa / inmembof.py
  A small example of loading BOFs in Python with pure reflection
  ☆16Updated last year
• jsecu / ElevatedEvents
  ☆29Updated last year
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆51Updated last year
• EspressoCake / DLL-Exports-Extraction-BOF
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆76Updated 2 years ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆17Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated 8 months ago
• kensh1ro / NimTeleBackdoor
  a simple backdoor in Nim
  ☆17Updated 3 years ago
• S3cur3Th1sSh1t / Nim_CBT_Shellcode
  CallBack-Techniques for Shellcode execution ported to Nim
  ☆53Updated 3 years ago
• ar33zy / Nimjector
  ☆37Updated last year
• maninwire / nimLoader
  load dumped csharp binaries as assemblies and launch them in memory
  ☆23Updated 7 months ago
• trainr3kt / Readfile_BoF
  ☆18Updated 2 years ago
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year