zodiacon / Recon2023View external linksLinks
Recon 2023 slides and code
☆80Jun 9, 2023Updated 2 years ago
Alternatives and similar repositories for Recon2023
Users that are interested in Recon2023 are comparing it to the libraries listed below
Sorting:
- ☆163Dec 30, 2022Updated 3 years ago
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- ☆49Feb 11, 2023Updated 3 years ago
- ☆38Jun 5, 2023Updated 2 years ago
- miscellaneous codes☆36Sep 24, 2023Updated 2 years ago
- Duplicate not owned Token from Running Process☆74Jul 21, 2023Updated 2 years ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆66May 1, 2023Updated 2 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆408Jan 11, 2026Updated last month
- Splitting and executing shellcode across multiple pages☆103Jun 8, 2023Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆154Jan 21, 2023Updated 3 years ago
- A bunch of scripts and code i wrote.☆149Nov 7, 2024Updated last year
- Threadless Process Injection through entry point hijacking☆351Sep 10, 2024Updated last year
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆146May 18, 2024Updated last year
- ☆118Aug 7, 2022Updated 3 years ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆209Nov 12, 2025Updated 3 months ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆115May 21, 2023Updated 2 years ago
- Important notes and topics on my journey towards mastering Windows Internals☆428May 2, 2024Updated last year
- Challenge Python☆19Apr 26, 2023Updated 2 years ago
- ☆84Nov 21, 2024Updated last year
- Simple x86/x64 Assembler/Disassembler/Emulator☆189Dec 13, 2025Updated 2 months ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆396Oct 6, 2024Updated last year
- ☆90Jun 2, 2024Updated last year
- C code to enable ETW tracing for Dotnet Assemblies☆32Aug 12, 2022Updated 3 years ago
- Encode binary as English text over HTTP(s)☆30Aug 25, 2023Updated 2 years ago
- Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations☆12Dec 9, 2022Updated 3 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆25Sep 19, 2022Updated 3 years ago
- ☆27May 1, 2023Updated 2 years ago
- ☆100Oct 7, 2023Updated 2 years ago
- A small x64 library to load dll's into memory.☆455Nov 6, 2023Updated 2 years ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆35Mar 28, 2023Updated 2 years ago
- Lateral Movement Using DCOM and DLL Hijacking☆326Jun 18, 2023Updated 2 years ago
- Running .NET from VBA☆149Feb 11, 2023Updated 3 years ago
- Enumerate information from NTLM authentication enabled web endpoints 🔎☆34Aug 16, 2023Updated 2 years ago
- Beacon Object File Loader☆294Dec 3, 2023Updated 2 years ago
- Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).☆187Feb 12, 2023Updated 3 years ago
- ☆28Apr 4, 2023Updated 2 years ago
- The Definitive Guide To Process Cloning on Windows☆539Jan 3, 2024Updated 2 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆243Sep 26, 2023Updated 2 years ago
- ☆319Jun 28, 2023Updated 2 years ago