timwhitez / ReturnGate
ReturnGate, just like HellsGate.
☆66Updated 2 years ago
Alternatives and similar repositories for ReturnGate:
Users that are interested in ReturnGate are comparing it to the libraries listed below
- ☆91Updated 3 years ago
- ☆40Updated last year
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆32Updated 2 years ago
- more conveniently Visual-Studio-BOF-template☆61Updated last year
- Silently Install Chrome Extension For Persistence☆49Updated 7 months ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆31Updated 2 years ago
- dump lsass☆37Updated 2 years ago
- UAC_wenpon☆48Updated 3 years ago
- ☆48Updated 3 years ago
- A wrapper of ldap_shell.py module which in ntlmrelayx☆61Updated 2 years ago
- MSSQL CLR for pentest.☆54Updated last year
- Beacon compiled using clang☆63Updated 2 years ago
- CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback☆68Updated 2 years ago
- vehsyscall:a syscall project that may bypass EDR☆54Updated last year
- Load shellcode via syscall☆47Updated 3 years ago
- CVE-2021-42287/CVE-2021-42278 exploits in powershell☆37Updated 2 years ago
- command execute without 445 port☆53Updated 3 years ago
- use aswArPot.sys to kill process☆67Updated 2 years ago
- cmd2shellcode☆78Updated 3 years ago
- Fork & modify of Wireguard's Memmod☆32Updated last year
- ☆30Updated last year
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆57Updated 3 years ago
- CVE-2020-1472 C++☆81Updated 2 years ago
- ☆100Updated 2 years ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆43Updated 3 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆42Updated 10 months ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- load assembly executable file in memory☆39Updated last year
- Self Cleanup in post-ex job☆49Updated 6 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆42Updated last year