wabzsy / gonut
Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
β32Updated last year
Related projects: β
- Golang implementation of @CCob's C# ThreadlessInjectβ30Updated 4 months ago
- ππͺ² Malleable C2 profiles parser and assembler written in golangβ58Updated 4 months ago
- β50Updated last year
- Sliver agent rewritten in C++β31Updated 2 weeks ago
- A third-party Gopher Assassin for the Havoc Framework.β44Updated 8 months ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader featureβ93Updated last year
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified processβ32Updated 2 years ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.β39Updated 8 months ago
- A Cobalt Strike memory evasion loader for redteamersβ94Updated last year
- Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.β78Updated last year
- β37Updated 8 months ago
- Preventing 3rd Party DLLs from Injecting into your Malwareβ24Updated 3 years ago
- old postex for grabbing a krbtgs for my current userβ28Updated last year
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publisheβ¦β47Updated 2 years ago
- A simple PoC of injection shellcode into a remote process and get the output using namepipeβ36Updated 8 months ago
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected processβ40Updated last year
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.β48Updated 2 years ago
- A PoC package for hosting the CLR and executing .NET from Goβ65Updated 2 months ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)β30Updated 2 years ago
- HookDetectionβ44Updated 3 years ago
- Beacon Object File allowing creation of Beacons in different sessions.β73Updated 2 years ago
- Flexible C# shellcode runnerβ34Updated 2 years ago
- β18Updated last month
- β56Updated 7 months ago
- x64 versionβ30Updated 2 years ago
- Use CMSTP.exe to bypass UAC.β36Updated 2 years ago
- A simple BOF that frees UDRLsβ106Updated 2 years ago
- This contains a number of examples demonstrating how to use callback functions in supported aggressor script functionsβ28Updated 2 months ago
- Titan: A generic user defined reflective DLL for Cobalt Strikeβ67Updated last year
- A spin-off research project. Cobalt Strike x Notion collab 2022β53Updated 2 years ago