xpn/DotNetDebug external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xpn/DotNetDebug

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xpn/DotNetDebug)

Close

xpn / DotNetDebugView on GitHubMore

• External links
• Readme badge

A simple POC to demonstrate the power of .NET debugging for injection

☆74Aug 11, 2020Updated 5 years ago

Alternatives and similar repositories for DotNetDebug

Users that are interested in DotNetDebug are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• rasta-mouse / AsyncNamedPipes

  View on GitHub
  Send and receive messages over Named Pipes asynchronously.
  ☆39Sep 17, 2021Updated 4 years ago
• rasta-mouse / Fork-n-Run

  View on GitHub
  ☆73Oct 24, 2021Updated 4 years ago
• mdsecactivebreach / RegistryStrikesBack

  View on GitHub
  ☆53Oct 20, 2020Updated 5 years ago
• shantanu561993 / SharpChisel

  View on GitHub
  C# Wrapper around Chisel from https://github.com/jpillora/chisel
  ☆160Feb 25, 2023Updated 3 years ago
• xpn / NautilusProject

  View on GitHub
  A collection of weird ways to execute unmanaged code in .NET
  ☆174May 4, 2021Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mobdk / Zeta

  View on GitHub
  Using "svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc" as trigger
  ☆58Oct 7, 2020Updated 5 years ago
• CCob / goreflect

  View on GitHub
  Reflective DLL loading of your favorite Golang program
  ☆174Jan 27, 2020Updated 6 years ago
• mdsecactivebreach / CloneVault

  View on GitHub
  ☆71Nov 20, 2020Updated 5 years ago
• forrest-orr / phantom-dll-hollower-poc

  View on GitHub
  Phantom DLL hollowing PoC
  ☆374May 23, 2022Updated 4 years ago
• N4kedTurtle / HellsGatePoC

  View on GitHub
  ☆51Sep 18, 2020Updated 5 years ago
• b4rtik / metasploit-execute-assembly

  View on GitHub
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆346Jul 21, 2020Updated 5 years ago
• djhohnstein / CSharpCreateThreadExample

  View on GitHub
  C# code to run PIC using CreateThread
  ☆17Apr 19, 2019Updated 7 years ago
• wwh1004 / MethodsMap

  View on GitHub
  A tool to show the method info at runtime
  ☆13Aug 12, 2019Updated 6 years ago
• mez-0 / MoveScheduler

  View on GitHub
  .NET 4.0 Scheduled Job Lateral Movement
  ☆90Aug 25, 2020Updated 5 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jfmaes / SharpHandler

  View on GitHub
  ☆188Jan 5, 2021Updated 5 years ago
• mdsecactivebreach / Execute-GithubAssembly-Aggressor

  View on GitHub
  Aggressor Script to Execute Assemblies from Github
  ☆71Nov 30, 2020Updated 5 years ago
• outflanknl / TamperETW

  View on GitHub
  PoC to demonstrate how CLR ETW events can be tampered.
  ☆193Mar 26, 2020Updated 6 years ago
• EncodeGroup / AggressiveProxy

  View on GitHub
  Project to enumerate proxy configurations and generate shellcode from CobaltStrike
  ☆139Nov 4, 2020Updated 5 years ago
• matterpreter / SHAPESHIFTER

  View on GitHub
  Companion PoC for the "Adventures in Dynamic Evasion" blog post
  ☆128May 25, 2021Updated 5 years ago
• sailay1996 / delete2SYSTEM

  View on GitHub
  Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM
  ☆126Aug 25, 2020Updated 5 years ago
• med0x2e / ExecuteAssembly

  View on GitHub
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆600Jul 26, 2021Updated 4 years ago
• b4rtik / SharpMiniDump

  View on GitHub
  Create a minidump of the LSASS process from memory
  ☆259Nov 2, 2022Updated 3 years ago
• EncodeGroup / UAC-SilentClean

  View on GitHub
  New UAC bypass for Silent Cleanup for CobaltStrike
  ☆191Jul 14, 2021Updated 4 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• b4rtik / SharpLoadImage

  View on GitHub
  Hide .Net assembly into png images
  ☆36Aug 11, 2019Updated 6 years ago
• mez-0 / CSharpWinRM

  View on GitHub
  .NET 4.0 WinRM API Command Execution
  ☆165Sep 11, 2020Updated 5 years ago
• b4rtik / ATPMiniDump

  View on GitHub
  Evading WinDefender ATP credential-theft
  ☆256Dec 2, 2019Updated 6 years ago
• conix-security / debug_inject

  View on GitHub
  Shellcode injection using debugging APIs
  ☆19Jan 13, 2014Updated 12 years ago
• reevesrs24 / EvasiveProcessHollowing

  View on GitHub
  Evasive Process Hollowing Techniques
  ☆143Aug 16, 2020Updated 5 years ago
• ReversecLabs / SharpClipHistory

  View on GitHub
  SharpClipHistory is a .NET application written in C# that can be used to read the contents of a user's clipboard history in Windows 10 st…
  ☆200Jan 23, 2020Updated 6 years ago
• med0x2e / NET-Assembly-Inject-Remote

  View on GitHub
  .NET assembly local/remote loading/injection into memory.
  ☆136Aug 2, 2019Updated 6 years ago
• rvrsh3ll / PELoader

  View on GitHub
  Load PE via XML Attribute
  ☆31Feb 1, 2020Updated 6 years ago
• xiaoxiaozhu5 / shadow_tls

  View on GitHub
  shadow tls
  ☆17Nov 13, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• rmdavy / HeapsOfFun

  View on GitHub
  AMSI Bypass Via the Heap
  ☆107Nov 20, 2020Updated 5 years ago
• outflanknl / WdToggle

  View on GitHub
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆219May 3, 2023Updated 3 years ago
• asaurusrex / Probatorum-EDR-Userland-Hook-Checker

  View on GitHub
  Project to check which Nt/Zw functions your local EDR is hooking
  ☆201Mar 21, 2021Updated 5 years ago
• mandiant / OfficePurge

  View on GitHub
  ☆263Apr 10, 2023Updated 3 years ago
• djhohnstein / ProcessReimaging

  View on GitHub
  Process reimaging proof of concept code
  ☆96Jun 21, 2019Updated 7 years ago
• mgeeky / UnhookMe

  View on GitHub
  UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …
  ☆351Jul 3, 2022Updated 3 years ago
• TheWover / AssemblyLoader

  View on GitHub
  Loads .NET Assembly Via CLR Loader
  ☆17Mar 6, 2019Updated 7 years ago