timwhitez / memmod
Fork & modify of Wireguard's Memmod
☆32Updated last year
Alternatives and similar repositories for memmod:
Users that are interested in memmod are comparing it to the libraries listed below
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆44Updated 2 years ago
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆32Updated 3 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆42Updated 2 years ago
- ☆30Updated 2 years ago
- load assembly executable file in memory☆40Updated last year
- dump lsass☆37Updated 2 years ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Updated 2 years ago
- CVE-2021-42287/CVE-2021-42278 exploits in powershell☆37Updated 2 years ago
- Load ssp dll golang implementation☆19Updated 3 years ago
- ☆45Updated 9 months ago
- Learning notes of amazing Sliver C2 project.☆25Updated last year
- Its a coff loader ported to go( Modified by TimWhite )☆26Updated last year
- BOF/COFF obj file to PIC(shellcode). by golang☆37Updated 2 years ago
- ☆21Updated last year
- Golang implement winrm client with pass the hash☆31Updated 10 months ago
- desktop screenshot☆29Updated last year
- ☆40Updated last year
- DiagTrack Eop (From Service Account to SYSTEM)☆22Updated 2 years ago
- query specific user and login IP from remote machine☆17Updated 2 years ago
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- ☆19Updated 2 years ago
- ☆12Updated 2 years ago
- Reflective DLL injection Execution☆19Updated 2 years ago
- ScareCrow loader binary source which easier to read and learn☆25Updated 2 years ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆43Updated 3 years ago
- dump lsass tool☆39Updated 2 years ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆14Updated last year
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process☆42Updated 2 years ago
- resource-based constrained delegation RBCD☆43Updated 3 years ago
- Cs-Sleep-Mask-Fiber☆17Updated 6 months ago