xforcered/Dendrobate external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xforcered/Dendrobate

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xforcered/Dendrobate)

Close

xforcered / DendrobateView on GitHubMore

• External links
• Readme badge

Managed code hooking template.

☆108Feb 15, 2021Updated 5 years ago

Alternatives and similar repositories for Dendrobate

Users that are interested in Dendrobate are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Flangvik / SharpAppLocker

  View on GitHub
  C# port of the Get-AppLockerPolicy PS cmdlet
  ☆100Dec 8, 2022Updated 3 years ago
• jackullrich / universal-syscall-64

  View on GitHub
  Resolve syscall numbers at runtime for all Windows versions.
  ☆59Nov 21, 2024Updated last year
• NVISOsecurity / brown-bags

  View on GitHub
  ☆112Jul 24, 2023Updated 2 years ago
• EspressoCake / BeaconDownloadSync

  View on GitHub
  ☆94May 14, 2022Updated 3 years ago
• outflanknl / TamperETW

  View on GitHub
  PoC to demonstrate how CLR ETW events can be tampered.
  ☆192Mar 26, 2020Updated 6 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• rasta-mouse / RuralBishop

  View on GitHub
  D/Invoke port of UrbanBishop
  ☆108Jul 19, 2020Updated 5 years ago
• LloydLabs / dearg-thread-ipc-stealth

  View on GitHub
  A novel technique to communicate between threads using the standard ETHREAD structure
  ☆116Feb 27, 2021Updated 5 years ago
• xforcered / StandIn

  View on GitHub
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆257Dec 2, 2021Updated 4 years ago
• PorLaCola25 / TransactedSharpMiniDump

  View on GitHub
  Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…
  ☆71Nov 14, 2020Updated 5 years ago
• itm4n / Perfusion

  View on GitHub
  Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
  ☆427Apr 22, 2021Updated 4 years ago
• FuzzySecurity / Dendrobate

  View on GitHub
  Managed code hooking template.
  ☆135Nov 19, 2021Updated 4 years ago
• asaurusrex / Probatorum-EDR-Userland-Hook-Checker

  View on GitHub
  Project to check which Nt/Zw functions your local EDR is hooking
  ☆200Mar 21, 2021Updated 5 years ago
• xforcered / CredBandit

  View on GitHub
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆245Jul 14, 2021Updated 4 years ago
• RedSiege / hot-manchego

  View on GitHub
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆148Sep 7, 2020Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• FalconForceTeam / SysWhispers2BOF

  View on GitHub
  Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
  ☆125May 24, 2022Updated 3 years ago
• jsecu / CredManBOF

  View on GitHub
  ☆100Sep 20, 2021Updated 4 years ago
• jfmaes / SharpZipRunner

  View on GitHub
  Executes position independent shellcode from an encrypted zip
  ☆304Dec 22, 2020Updated 5 years ago
• alfarom256 / BOF-ForeignLsass

  View on GitHub
  ☆101Aug 23, 2021Updated 4 years ago
• NVISOsecurity / cobalt-strike-notifier

  View on GitHub
  ☆13Jul 30, 2021Updated 4 years ago
• xforcered / InlineExecute-Assembly

  View on GitHub
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆195Jul 9, 2021Updated 4 years ago
• checkymander / Carbuncle

  View on GitHub
  Tool for interacting with outlook interop during red team engagements
  ☆146Jun 29, 2021Updated 4 years ago
• med0x2e / ExecuteAssembly

  View on GitHub
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆595Jul 26, 2021Updated 4 years ago
• RedSiege / CIMplant

  View on GitHub
  C# port of WMImplant which uses either CIM or WMI to query remote systems
  ☆203Jul 14, 2021Updated 4 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• dmchell / Sniper

  View on GitHub
  A simple proof of concept for detecting use of Cobalt Strike's execute-assembly
  ☆59Apr 1, 2022Updated 4 years ago
• rasta-mouse / Fork-n-Run

  View on GitHub
  ☆73Oct 24, 2021Updated 4 years ago
• G0ldenGunSec / SharpTransactedLoad

  View on GitHub
  Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
  ☆173May 5, 2021Updated 4 years ago
• frkngksl / ParallelNimcalls

  View on GitHub
  Nim version of MDSec's Parallel Syscall PoC
  ☆124Apr 3, 2026Updated last week
• EspressoCake / Self_Deletion_BOF

  View on GitHub
  BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
  ☆186Oct 3, 2021Updated 4 years ago
• rasta-mouse / AsyncNamedPipes

  View on GitHub
  Send and receive messages over Named Pipes asynchronously.
  ☆39Sep 17, 2021Updated 4 years ago
• frkngksl / Celeborn

  View on GitHub
  Userland API Unhooker Project
  ☆111Apr 4, 2026Updated last week
• EspressoCake / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆143Sep 24, 2021Updated 4 years ago
• vletoux / RPCForSMBLibrary

  View on GitHub
  Extension of SMBLibrary for RPC calls
  ☆35Jun 11, 2024Updated last year
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• mubix / lmo

  View on GitHub
  LetMeOutOfYour.net Resources
  ☆21Jul 15, 2020Updated 5 years ago
• rvrsh3ll / SharpSMBSpray

  View on GitHub
  Spray a hash via smb to check for local administrator access
  ☆142Feb 7, 2021Updated 5 years ago
• boku7 / HellsGatePPID

  View on GitHub
  Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process
  ☆108Mar 8, 2023Updated 3 years ago
• moloch-- / DarkLoadLibrary

  View on GitHub
  LoadLibrary for offensive operations
  ☆33Dec 14, 2021Updated 4 years ago
• guervild / BOFs

  View on GitHub
  Cobalt Strike Beacon Object Files
  ☆167May 2, 2022Updated 3 years ago
• boku7 / Nobelium-PdfDLRunAesShellcode

  View on GitHub
  A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn
  ☆101Mar 8, 2023Updated 3 years ago
• rvrsh3ll / NoMSBuild

  View on GitHub
  MSBuild without MSbuild.exe
  ☆135Dec 21, 2020Updated 5 years ago