timwhitez / ReturnGate
ReturnGate, just like HellsGate.
☆66Updated 2 years ago
Alternatives and similar repositories for ReturnGate:
Users that are interested in ReturnGate are comparing it to the libraries listed below
- more conveniently Visual-Studio-BOF-template☆62Updated last year
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆57Updated 3 years ago
- ☆91Updated 3 years ago
- ☆40Updated last year
- ☆48Updated 3 years ago
- cmd2shellcode☆78Updated 3 years ago
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆32Updated 2 years ago
- Beacon compiled using clang☆63Updated 2 years ago
- CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback☆68Updated 2 years ago
- dump lsass☆37Updated 2 years ago
- A wrapper of ldap_shell.py module which in ntlmrelayx☆62Updated 2 years ago
- command execute without 445 port☆53Updated 3 years ago
- use aswArPot.sys to kill process☆67Updated 2 years ago
- UAC_wenpon☆48Updated 3 years ago
- CVE-2020-1472 C++☆81Updated 2 years ago
- ☆100Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆42Updated 10 months ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆43Updated 3 years ago
- Beacon Object File implementation of pwn1sher's KillDefender☆66Updated 2 years ago
- CVE-2021-42287/CVE-2021-42278 exploits in powershell☆37Updated 2 years ago
- Fork & modify of Wireguard's Memmod☆32Updated last year
- MSSQL CLR for pentest.☆54Updated last year
- power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes☆46Updated 3 years ago
- load assembly executable file in memory☆39Updated last year
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- Silently Install Chrome Extension For Persistence☆49Updated 7 months ago
- Load shellcode via syscall☆47Updated 3 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆42Updated last year
- bypass BeaconEye☆88Updated 3 years ago