trickster0 / TartarusGate

Related projects ⓘ

Alternatives and complementary repositories for TartarusGate

• Maldev-Academy / HellHall
  Performing Indirect Clean Syscalls
  ☆480Updated last year
• iilegacyyii / ThreadlessInject-BOF
  BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…
  ☆367Updated 10 months ago
• Maldev-Academy / EntropyReducer
  Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists
  ☆383Updated last year
• MalwareTech / EDR-Preloader
  An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
  ☆454Updated 9 months ago
• Dec0ne / DllNotificationInjection
  A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…
  ☆433Updated last year
• Dec0ne / HWSyscalls
  HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
  ☆628Updated last year
• fortra / No-Consolation
  A BOF that runs unmanaged PEs inline
  ☆546Updated 3 weeks ago
• S3cur3Th1sSh1t / Caro-Kann
  Encrypted shellcode Injection to avoid Kernel triggered memory scans
  ☆344Updated last year
• Cracked5pider / Ekko
  Sleep Obfuscation
  ☆684Updated 11 months ago
• itm4n / PPLmedic
  Dump the memory of any PPL with a Userland exploit chain
  ☆331Updated last year
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆621Updated last year
• gabriellandau / PPLFault
  ☆506Updated 8 months ago
• reveng007 / DarkWidow
  Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
  ☆560Updated last month
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆879Updated 5 months ago
• SaadAhla / UnhookingPatch
  Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime
  ☆298Updated last year
• zer0condition / mhydeath
  Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
  ☆383Updated last year
• trustedsec / COFFLoader
  ☆471Updated 3 weeks ago
• redteamsocietegenerale / DLLirant
  DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.
  ☆478Updated last year
• pard0p / CallstackSpoofingPOC
  C++ self-Injecting dropper based on various EDR evasion techniques.
  ☆338Updated 9 months ago
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆346Updated 2 years ago
• securifybv / Visual-Studio-BOF-template
  A Visual Studio template used to create Cobalt Strike BOFs
  ☆282Updated 3 years ago
• Octoberfest7 / MemFiles
  A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
  ☆428Updated 4 months ago
• SaadAhla / D1rkLdr
  Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscal…
  ☆302Updated last year
• georgesotiriadis / Chimera
  Automated DLL Sideloading Tool With EDR Evasion Capabilities
  ☆458Updated 11 months ago
• thefLink / Hunt-Sleeping-Beacons
  Aims to identify sleeping beacons
  ☆489Updated 5 months ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆273Updated 11 months ago
• kleiton0x00 / Proxy-DLL-Loads
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆325Updated 5 months ago
• WithSecureLabs / CallStackSpoofer
  A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
  ☆431Updated 2 years ago
• Cracked5pider / KaynLdr
  KaynLdr is a Reflective Loader written in C/ASM
  ☆521Updated 11 months ago