x42en / sysplantLinks
Your syscall factory
☆123Updated last week
Alternatives and similar repositories for sysplant
Users that are interested in sysplant are comparing it to the libraries listed below
Sorting:
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆94Updated 2 years ago
- ☆136Updated last year
- ☆122Updated last year
- Simple BOF to read the protection level of a process☆114Updated 2 years ago
- Do some DLL SideLoading magic☆83Updated last year
- ☆184Updated last year
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆145Updated 2 years ago
- Bypass LSA protection using the BYODLL technique☆161Updated 8 months ago
- ☆124Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆187Updated 6 months ago
- Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…☆116Updated last year
- Run Cobalt Strike BOFs in Brute Ratel C4!☆68Updated last month
- Implant drop-in for EDR testing☆139Updated last year
- Find .net assemblies locally☆113Updated 2 years ago
- ☆111Updated 4 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- ☆110Updated 6 months ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆113Updated last year
- RDLL for Cobalt Strike beacon to silence sysmon process☆88Updated 2 years ago
- AzureAD beacon object files☆119Updated 5 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆91Updated 3 weeks ago
- ☆130Updated 3 months ago
- ☆115Updated 2 months ago
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆112Updated 3 years ago
- Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…☆133Updated 2 years ago
- Patch AMSI and ETW☆239Updated last year
- Tool for playing with Windows Access Token manipulation.☆55Updated 2 years ago
- ☆75Updated 2 years ago