Fork & modify of Wireguard's Memmod
☆34Aug 2, 2023Updated 2 years ago
Alternatives and similar repositories for memmod
Users that are interested in memmod are comparing it to the libraries listed below
Sorting:
- Reflective DLL injection Execution☆20Sep 9, 2022Updated 3 years ago
- Its a coff loader ported to go( Modified by TimWhite )☆26Jul 17, 2023Updated 2 years ago
- Code with Windows Hacker☆12Oct 14, 2022Updated 3 years ago
- Fork of Wireguard's Memmod☆17Feb 25, 2023Updated 3 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Jul 23, 2023Updated 2 years ago
- Load ssp dll golang implementation☆19Jan 18, 2022Updated 4 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆135Nov 30, 2022Updated 3 years ago
- 存储练习项目,目前有GetWeChatBOF☆19Jul 26, 2023Updated 2 years ago
- 添加计划任务方法集合☆310Aug 6, 2023Updated 2 years ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆331Sep 10, 2024Updated last year
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆45Mar 9, 2022Updated 4 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Mar 23, 2022Updated 3 years ago
- ReturnGate, just like HellsGate.☆68Aug 10, 2022Updated 3 years ago
- automatic privilege escalation by pspy☆23Jan 19, 2022Updated 4 years ago
- BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆17Jul 22, 2022Updated 3 years ago
- 关于RPC一些绕EDR的tips☆198Mar 3, 2023Updated 3 years ago
- Golang implementation of Reflective load PE from memory☆64Jan 10, 2022Updated 4 years ago
- Its a coff loader ported to go☆20Oct 2, 2022Updated 3 years ago
- EDR绕过demo☆294Jan 14, 2024Updated 2 years ago
- 基于golang实现的impacket☆246Aug 28, 2023Updated 2 years ago
- a go wrapper for memory dll☆28Apr 18, 2016Updated 9 years ago
- windows task scheduler in golang☆29Sep 6, 2021Updated 4 years ago
- ad vulnerability scanner☆74Dec 21, 2023Updated 2 years ago
- zscan的poc扫描模块,独立出来是为了方便以后升级xray poc格式的v2版本☆15Jan 12, 2022Updated 4 years ago
- Ntdll Unhooking POC☆19Aug 12, 2022Updated 3 years ago
- golang 实现 sqlmap☆27Apr 5, 2021Updated 4 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆195Jun 18, 2024Updated last year
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆98Mar 20, 2023Updated 3 years ago
- vehsyscall:a syscall project that may bypass EDR☆63Mar 1, 2024Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆55Jul 1, 2023Updated 2 years ago
- ☆24Jun 12, 2023Updated 2 years ago
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆49Mar 15, 2023Updated 3 years ago
- 根据攻防以及域信息收集经验dump快而有用的域信息☆103Aug 15, 2023Updated 2 years ago
- Coffee is a loader for ELF (Executable and Linkable Format) object files written in Rust. Coffee是一个用Rust语言编写的ELF object文件的加载器☆63Apr 29, 2024Updated last year
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆115Jun 7, 2021Updated 4 years ago
- WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配☆29Jun 26, 2022Updated 3 years ago
- An implementation of an indirect system call☆132Aug 25, 2023Updated 2 years ago
- Beacon compiled using clang☆71Jan 22, 2023Updated 3 years ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 2 years ago