tehstoni / tryharder
C++ Staged Shellcode Loader with Evasion capabilities.
☆65Updated last month
Related projects: ⓘ
- ☆65Updated this week
- ☆79Updated 2 weeks ago
- ☆90Updated 6 months ago
- Lateral Movement via the .NET Profiler☆74Updated 3 months ago
- Modified versions of the Cobalt Strike Process Injection Kit☆85Updated 7 months ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆60Updated last year
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆55Updated 5 months ago
- Section-based payload obfuscation technique for x64☆59Updated last month
- I have documented all of the AMSI patches that I learned till now☆66Updated last year
- A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust☆79Updated 5 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated 2 months ago
- ☆54Updated last month
- Threadless shellcode injection tool☆56Updated last month
- ☆28Updated this week
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated 6 months ago
- Construct the payload at runtime using an array of offsets☆59Updated 3 months ago
- ☆27Updated 3 months ago
- Rewrite to fit my needs☆25Updated last month
- Simple BOF to read the protection level of a process☆101Updated last year
- ☆79Updated 4 months ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆72Updated last month
- ☆70Updated last year
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆49Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆76Updated last year
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆69Updated 7 months ago
- ☆25Updated last month
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆147Updated 10 months ago
- Click Once + App Domain☆61Updated 9 months ago
- ☆101Updated 4 months ago
- ☆67Updated this week