Alternatives and similar repositories for LockdExeDemo

Users that are interested in LockdExeDemo are comparing it to the libraries listed below

• zcgonvh / TaskSchedulerMisc
  Misc TaskScheduler Plays
  ☆236Updated 2 years ago
• boku7 / injectEtwBypass
  CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)
  ☆285Updated 3 years ago
• NoOne-hub / Beacon.dll
  Beacon.dll reverse
  ☆140Updated 3 years ago
• SolomonSklash / SyscallPOC
  Shellcode injection POC using syscalls.
  ☆116Updated 5 years ago
• Kara-4search / HellgateLoader_CSharp
  Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.
  ☆16Updated 3 years ago
• icyguider / DumpNParse
  A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0.
  ☆150Updated 3 years ago
• dtmsecurity / bof_helper
  Beacon Object File (BOF) Creation Helper
  ☆229Updated 3 years ago
• ChoiSG / UuidShellcodeExec
  PoC for UUID shellcode execution using DInvoke
  ☆152Updated 4 years ago
• Yaxser / COFFLoader2
  Load and execute COFF files and Cobalt Strike BOFs in-memory
  ☆217Updated 2 years ago
• hackerhouse-opensource / ColorDataProxyUACBypass
  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…
  ☆138Updated 2 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆140Updated 3 years ago
• EddieIvan01 / win32api-practice
  Offensive tools written for practice purposes
  ☆160Updated 2 years ago
• sailay1996 / RpcSsImpersonator
  Privilege Escalation Via RpcSs svc
  ☆180Updated 3 years ago
• Hagrid29 / DuplicateDump
  Dumping LSASS with a duplicated handle from custom LSA plugin
  ☆201Updated 3 years ago
• tomcarver16 / BOF-DLL-Inject
  Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
  ☆153Updated 4 years ago
• bigb0sss / Bankai
  Another Go Shellcode Loader using Windows APIs
  ☆140Updated 3 years ago
• morph3 / Windows-RPC-Backdoor
  Simple windows rpc server for research purposes only
  ☆82Updated 3 years ago
• BronzeTicket / ClipboardWindow-Inject
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆69Updated 2 years ago
• Kara-4search / SysCall_ShellcodeLoad_Csharp
  Load shellcode via syscall
  ☆54Updated 3 years ago
• marpie / signed-loaders
  signed-loaders documents Windows executables that can be used for side-loading DLLs.
  ☆68Updated 6 years ago
• Octoberfest7 / KDStab
  BOF combination of KillDefender and Backstab
  ☆169Updated 2 years ago
• boku7 / whereami
  Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL…
  ☆180Updated 2 years ago
• EspressoCake / Self_Deletion_BOF
  BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
  ☆182Updated 3 years ago
• Flangvik / DLLSideloader
  PowerShell script to generate "proxy" counterparts to easily perform DLL Sideloading
  ☆126Updated 5 years ago
• Flangvik / SharpProxyLogon
  C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
  ☆246Updated 4 years ago
• b1tg / rs-shellcode
  Another shellcode runner 🦀 🐚
  ☆149Updated 3 years ago
• sailay1996 / windows-stuff
  my learning case about windows
  ☆21Updated 3 years ago
• CCob / MirrorDump
  Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…
  ☆265Updated 4 years ago
• timwhitez / Doge-Assembly
  Golang evasion tool, execute-assembly .Net file
  ☆97Updated 3 years ago
• EncodeGroup / BOF-RegSave
  Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
  ☆202Updated 4 years ago