Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique
☆20Dec 3, 2024Updated last year
Alternatives and similar repositories for Shadow-Rebirth
Users that are interested in Shadow-Rebirth are comparing it to the libraries listed below
Sorting:
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- A runtime for developing large-scale and complex shellcode.☆22Feb 15, 2026Updated last week
- A Simple PoC☆22May 24, 2024Updated last year
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Feb 26, 2025Updated last year
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆51Apr 22, 2024Updated last year
- Template for writing shellcode in rust☆26Feb 27, 2022Updated 4 years ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Apr 14, 2025Updated 10 months ago
- Proof of Concept (PoC) implant for creating custom Cobalt Strike Beacons☆170Feb 11, 2026Updated 2 weeks ago
- ☆64Dec 19, 2024Updated last year
- Challenges created for the US Cyber Open 2023 (Season 3)☆13Jun 13, 2023Updated 2 years ago
- UFSIT scripts and tools for hardening and auditing☆14May 28, 2025Updated 9 months ago
- System Call Integrity Layer - experimental security research☆25Jan 31, 2026Updated last month
- A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++☆37Jan 10, 2024Updated 2 years ago
- ☆38Oct 16, 2025Updated 4 months ago
- DLL injection with Microsoft detours☆22Dec 9, 2025Updated 2 months ago
- 自定义函数堆栈,从而绕过ETW检测,这个是完整版。☆13Apr 15, 2024Updated last year
- Linux Sleep Obfuscation☆112Jan 7, 2024Updated 2 years ago
- a stage1 DLL loader with sleep obfuscation☆36Dec 27, 2022Updated 3 years ago
- The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23☆23Jun 19, 2025Updated 8 months ago
- Challenges and writeups for the US Cyber Open for 2024☆21Jun 11, 2024Updated last year
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆137Apr 6, 2025Updated 10 months ago
- A dynamic HTTP/S stager that lets one shellcode loader be reused for different encrypted payloads - no rebuilds.☆19Oct 1, 2025Updated 4 months ago
- Its a coff loader ported to go☆20Oct 2, 2022Updated 3 years ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 7 months ago
- Some of the Karen Wagner High School Computer Science Team's Solutions for Past UIL CS Programming Problems.☆11Apr 19, 2024Updated last year
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆26Apr 21, 2025Updated 10 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆52Dec 4, 2023Updated 2 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆26Apr 21, 2022Updated 3 years ago
- ☆23Apr 28, 2024Updated last year
- Next gen process injection technique☆54Jul 9, 2020Updated 5 years ago
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆169May 17, 2023Updated 2 years ago
- We found a way to DLL sideload with cleanmgr.exe☆98Feb 25, 2025Updated last year
- Python tool to generate crafted JWTs, exploiting the algorithm confusion vulnerability in JWT signature validation. Useful for security …☆25Mar 22, 2025Updated 11 months ago
- A 64 bit executable junk code engine for polymorphic malware.☆76Jun 16, 2025Updated 8 months ago
- Locate dlls and function addresses without PEB Walk and EAT parsing☆104Nov 7, 2025Updated 3 months ago
- Hooked create process injection for meterpreter☆23Jun 16, 2021Updated 4 years ago
- By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be byp…☆14May 25, 2025Updated 9 months ago
- ☆101Oct 7, 2023Updated 2 years ago
- SVG Analysis and generation tools for commonly seen SVG attachment phishing☆55Sep 24, 2025Updated 5 months ago