xforcered / elfpack
ELF Sectional docking payload injector system
☆21Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for elfpack
- Procscan is a quick and dirty python script used to look for potentially dangerous api call patterns in a Procmon PML file.☆11Updated 2 years ago
- AMSI detection PoC☆30Updated 4 years ago
- ☆59Updated 4 months ago
- JXA implementation of some SwiftBelt functions. Author: Cedric Owens☆42Updated last year
- A rust utility for instrumenting binaries, used in Holiday Hack Challenge 2021☆26Updated 2 years ago
- ☆22Updated 5 months ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 2 years ago
- A small utility to deal with malware embedded hashes.☆48Updated last year
- Blue Pigeon is a Bluetooth-based data exfiltration and proxy tool to enable communication between a remote Command and Control (C2) serve…☆54Updated 3 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆27Updated last year
- Winbindex bot to pull in binaries for specific releases☆46Updated last year
- ☆41Updated 2 years ago
- Exfiltration based on custom X509 certificates☆26Updated 8 months ago
- ☆10Updated 4 years ago
- A collection of shellcode hashes☆17Updated 6 years ago
- ☆38Updated 2 years ago
- Enumerate Location Services using CoreLocation API on macOS☆17Updated 2 years ago
- ☆29Updated 2 years ago
- Radare2 Metadata Extraction to Elasticsearch☆21Updated 6 months ago
- Tools that trigger False Positive AV alerts☆43Updated last year
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆25Updated last year
- Inter-Process Communication Mechanisms☆24Updated 4 years ago
- Imphash-like calculation on Golang binaries☆47Updated 2 years ago
- android-inject-hook☆15Updated 6 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- ☆15Updated 3 years ago
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…☆86Updated last year
- Covenant is a collaborative .NET C2 framework for red teamers.☆22Updated 4 years ago