Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
☆14Sep 30, 2022Updated 3 years ago
Alternatives and similar repositories for Freeze-Common
Users that are interested in Freeze-Common are comparing it to the libraries listed below
Sorting:
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Dec 16, 2021Updated 4 years ago
- Phantom DLL Hollowing method implemented in modmap☆18Jun 9, 2021Updated 4 years ago
- Load ssp dll golang implementation☆19Jan 18, 2022Updated 4 years ago
- Like Hell's Gate but more EGG :)☆20Mar 11, 2022Updated 3 years ago
- Goal Go Red-Team 工具类☆44Jan 15, 2025Updated last year
- Process injection techniques written in Go.☆64Jul 1, 2023Updated 2 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆13Jul 14, 2022Updated 3 years ago
- ☆23Aug 31, 2022Updated 3 years ago
- DPX - the Doge Packer for eXecutables☆30Dec 21, 2021Updated 4 years ago
- 基于wappalyzer指纹库、chromedp框架对网站进行指纹识�别☆13Mar 17, 2025Updated 11 months ago
- A handy plugin for copying requests/responses directly from Burp, some extra magic included.☆13Oct 15, 2021Updated 4 years ago
- OwOwning with the Windows API Examples and Code. DEFCON Furs 2020 presentation.☆13Jan 18, 2024Updated 2 years ago
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Aug 31, 2021Updated 4 years ago
- ☆14Sep 2, 2021Updated 4 years ago
- ☆30Mar 21, 2023Updated 2 years ago
- Using fibers to execute shellcode in a local process via csharp☆28Jan 2, 2022Updated 4 years ago
- Thanks to @d35ha☆13Aug 16, 2021Updated 4 years ago
- 杂 物 收 纳☆15Aug 4, 2023Updated 2 years ago
- golang amsi bypass☆30Dec 4, 2021Updated 4 years ago
- 扫描CobaltStrike的恶意IP☆31Apr 6, 2022Updated 3 years ago
- Weaponizing for privileged file writes bugs with PrintNotify Service☆136May 17, 2022Updated 3 years ago
- Iterate over Windows Handles☆15Nov 18, 2025Updated 3 months ago
- ☆17Aug 25, 2022Updated 3 years ago
- Dirfuzz by golang☆15Feb 28, 2023Updated 3 years ago
- Using the Windows API to mess with Task Manager in GoLANG☆15Sep 7, 2021Updated 4 years ago
- windows API to hide console window by golang☆35Dec 20, 2021Updated 4 years ago
- PoC of proxylogon chain SSRF(CVE-2021-26855) to write file by testanull, censored by github☆62Mar 11, 2021Updated 4 years ago
- impersonate trustedinstaller by fiddling with tokens☆17Aug 30, 2021Updated 4 years ago
- Rust Weaponization for Red Team Engagements.☆15Oct 9, 2021Updated 4 years ago
- 利用NTLM Hash读取Exchange邮件☆58May 13, 2023Updated 2 years ago
- Malice Windows Defender AntiVirus Plugin☆40Mar 7, 2023Updated 2 years ago
- 重点系统指纹识别的工具☆34Mar 1, 2022Updated 4 years ago
- Six cases demonstrating methods of optimizing GetProcAddress☆18Jan 3, 2022Updated 4 years ago
- 看起来叫BabyBypass,实际啥都会记一些☆16Sep 10, 2023Updated 2 years ago
- windows task scheduler in golang☆29Sep 6, 2021Updated 4 years ago
- Bypass Windows defender syscall☆18Jul 17, 2021Updated 4 years ago
- Ntdll Unhooking POC☆19Aug 12, 2022Updated 3 years ago
- Golang library implementing NTLM☆16Aug 7, 2024Updated last year