trustedsec / inProc_Evade_Get-InjectedThreadLinks
PoC code from blog
☆16Updated 5 years ago
Alternatives and similar repositories for inProc_Evade_Get-InjectedThread
Users that are interested in inProc_Evade_Get-InjectedThread are comparing it to the libraries listed below
Sorting:
- ☆28Updated 7 years ago
- Ransoblin (Ransomware Bokoblin)☆18Updated 5 years ago
- C# code to run PIC using CreateThread☆17Updated 6 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆20Updated 4 years ago
- ☆26Updated 7 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆21Updated 5 years ago
- ☆18Updated 5 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Updated 4 years ago
- Protect your servers with a secret header☆29Updated 5 years ago
- Source code in Win32 ASM and C for a shellcode execution wrapper designed to mitigate the risk of shellcode execution on a host other tha…☆19Updated 9 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆54Updated 4 years ago
- Python 3 server used to control SK8RAT implant☆36Updated 4 years ago
- ☆14Updated 6 years ago
- ☆14Updated 5 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Updated 6 years ago
- A C port of b33f's UrbanBishop☆38Updated 5 years ago
- AppXSVC Service race condition - privilege escalation☆29Updated 6 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆16Updated 7 years ago
- Miscellaneous examples for use with Cobalt Strike Beacon☆10Updated 4 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆36Updated 5 years ago
- A tool to sync mythic events with ghostwriter oplog.☆14Updated 11 months ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- Visual Studio (C++) Solution Template for Payloads☆18Updated 5 years ago
- Modifies machine.config for persistence after installing signed .net assembly onto GAC☆14Updated 3 years ago
- Walking the PEB in VBA☆24Updated 5 years ago
- POC code to crash Windows Event Logger Service☆27Updated 5 years ago
- Spin up a reverse proxy quickly on Heroku☆14Updated 4 years ago
- D/Invoke port of UrbanBishop☆29Updated 4 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 5 years ago
- Loading and executing shellcode in C# without PInvoke.☆22Updated 3 years ago