zha0gongz1 / Windows-ReverseShell

Related projects ⓘ

Alternatives and complementary repositories for Windows-ReverseShell

• timwhitez / Doge-RL
  Reflective DLL injection Execution
  ☆19Updated 2 years ago
• timwhitez / Spoofing-Gate
  (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll
  ☆41Updated 2 years ago
• timwhitez / Doge-Unhook
  DLL Unhooking
  ☆12Updated 3 years ago
• Hagrid29 / BOF-SprayAD
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆43Updated last year
• timwhitez / memmod
  Fork & modify of Wireguard's Memmod
  ☆31Updated last year
• BOFs / BOFs
  Beacon Object Files.
  ☆31Updated 8 months ago
• Jeffry38 / HiddenVNC
  A simple hidden vnc.
  ☆32Updated 3 years ago
• timwhitez / Bof2PIC
  BOF/COFF obj file to PIC(shellcode). by golang
  ☆36Updated 2 years ago
• wilszdev / GetTrustedInstallerShell
  impersonate trustedinstaller by fiddling with tokens
  ☆17Updated 3 years ago
• kyxiaxiang / CrackSleeve4.9
  ☆38Updated last year
• timwhitez / Doge-BlockDLLs
  Preventing 3rd Party DLLs from Injecting into your Malware
  ☆24Updated 3 years ago
• Kara-4search / DInvoke_shellcodeload_CSharp
  ShellCodeLoader via DInvoke
  ☆49Updated 3 years ago
• timwhitez / Doge-ScreenShot
  desktop screenshot
  ☆29Updated last year
• th3k3ymak3r / minbeacon
  A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.
  ☆16Updated 2 years ago
• Kara-4search / Fiber_ShellcodeExecution
  Using fibers to execute shellcode in a local process via csharp
  ☆28Updated 2 years ago
• y11en / BabyBypass
  看起来叫BabyBypass，实际啥都会记一些
  ☆16Updated last year
• Octoberfest7 / KillDefender_BOF
  Beacon Object File implementation of pwn1sher's KillDefender
  ☆62Updated 2 years ago
• timwhitez / Doge-CLRLoad
  load assembly executable file in memory
  ☆37Updated last year
• kouzhudong / HidePort
  Hide Port In Windows
  ☆37Updated 3 weeks ago
• nick-frischkorn / TokenStripBOF
  Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process
  ☆32Updated 2 years ago
• timwhitez / Doge-RecycledGate
  Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;
  ☆31Updated 2 years ago
• ScriptIdiot / sw2-secinject
  Section Mapping Process Injection modified with SysWhisper2 (sw2-secinject): Cobalt Strike BOF
  ☆41Updated 2 years ago
• timwhitez / AddressOfEntryPoint-injection
  x64 version
  ☆30Updated 3 years ago
• ShadowMccc / MemoryEvasion
  A Cobalt Strike memory evasion loader for redteamers
  ☆95Updated last year
• ghost5egy / Shellcode-Ghost
  ☆12Updated 2 years ago
• ASkyeye / AB
  Cs-Sleep-Mask-Fiber
  ☆16Updated 2 months ago
• evilashz / ProxyAPICall
  Just another version of the custom stack call from Proxy-Function-Calls-For-ETwTI
  ☆32Updated last year
• w1u0u1 / nanodump
  A flexible tool that creates a minidump of the LSASS process
  ☆12Updated 2 years ago