yutianqaq / Anti-Sandbox-GoLinks
Some anti-sandbox techniques implemented in Golang.
☆11Updated last year
Alternatives and similar repositories for Anti-Sandbox-Go
Users that are interested in Anti-Sandbox-Go are comparing it to the libraries listed below
Sorting:
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆31Updated 2 weeks ago
- A tool to assist DLL hijacking via the Havoc GUI☆13Updated last year
- BypassCredGuard CS BOF☆41Updated 4 months ago
- Golang implementation of @CCob's C# ThreadlessInject☆32Updated last year
- Using LNK files and user input simulation to start processes under explorer.exe☆25Updated 8 months ago
- A tool written in golang which compress using UPX and patch it with the provided PE file to make "UPX -d" flag impossible to decompress a…☆17Updated 5 months ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆47Updated 2 years ago
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆44Updated 2 years ago
- Remote Access Tool written in C#☆35Updated last month
- BOF/COFF obj file to PIC(shellcode). by golang☆39Updated 2 years ago
- A Simple PoC☆21Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆16Updated last year
- Help red teams find opsec processes during engagements☆40Updated 5 months ago
- replace the shellcode chatacters so that reduce the entropy☆17Updated last year
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Updated 3 years ago
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆24Updated 11 months ago
- ProcExp Driver (Ab)use☆22Updated 2 years ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆50Updated 3 months ago
- A simple PoC of injection shellcode into a remote process and get the output using namepipe☆42Updated last year
- A simple BOF (Beacon Object File) to search files in the system☆14Updated last year
- Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)☆14Updated 9 months ago
- Enable-All-Tokens is a Go-based project designed to adjust and enable a list of specified privileges for the current process token on a W…☆10Updated last month
- BloodyAv is Custom Shell Code loader to Bypass Av and Edr.☆14Updated 3 years ago
- ☆42Updated last year
- ☆17Updated 2 years ago
- ☆71Updated last year
- Groovy Post Exploitation☆20Updated 7 months ago
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆34Updated 3 years ago
- Windows C++ Implant for Exploration C2☆31Updated last week
- Library of BOFs to interact with SQL servers☆21Updated last month