-
COMThanasia Public
Forked from CICADA8-Research/COMThanasiaA set of programs for analyzing common vulnerabilities in COM
-
No-Consolation Public
Forked from fortra/No-ConsolationA BOF that runs unmanaged PEs inline
-
-
phnt-single-header Public
Forked from mrexodia/phnt-single-headerSingle header version of System Informer's phnt library.
CMake MIT License UpdatedMay 24, 2024 -
-
DLHell Public
Forked from synacktiv/DLHellLocal & remote Windows DLL Proxying
Python UpdatedApr 17, 2024 -
MultiDump Public
Forked from Xre0uS/MultiDumpMultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
C UpdatedMar 18, 2024 -
SymProcAddress Public
Forked from MzHmO/SymProcAddressZero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
C++ UpdatedMar 16, 2024 -
Adalanche Public
Forked from lkarlslund/AdalancheActive Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Go GNU Affero General Public License v3.0 UpdatedFeb 7, 2024 -
Kerbeus-BOF Public
Forked from RalfHacker/Kerbeus-BOFBOF for Kerberos abuse (an implementation of some important features of the Rubeus).
C UpdatedNov 20, 2023 -
LdrLibraryEx Public
Forked from Cracked5pider/LdrLibraryExA small x64 library to load dll's into memory.
C UpdatedNov 6, 2023 -
LdrLockLiberator Public
Forked from ElliotKillick/LdrLockLiberatorFor when DLLMain is the only way
C MIT License UpdatedNov 2, 2023 -
superlooper Public
Forked from Spelieye/superlooperAn open source programmable looping pedal based off of the BYOC super8 pedal.
C MIT License UpdatedOct 31, 2023 -
linWinPwn Public
Forked from lefayjey/linWinPwnlinWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks
Shell MIT License UpdatedOct 3, 2023 -
perfect-loader Public
Forked from EvanMcBroom/perfect-loaderLoad a dynamic library from memory by modifying the native Windows loader
C++ MIT License UpdatedSep 30, 2023 -
-
LoudSunRun Public
Forked from susMdT/LoudSunRunStack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven
C UpdatedSep 17, 2023 -
-
msvc-wine Public
Forked from mstorsjo/msvc-wineScripts for setting up and running MSVC in Wine on Linux
Shell Other UpdatedSep 13, 2023 -
Caro-Kann Public
Forked from S3cur3Th1sSh1t/Caro-KannEncrypted shellcode Injection to avoid Kernel triggered memory scans
C UpdatedSep 12, 2023 -
BlackLotus2 Public
Forked from ldpreload/BlackLotusBlackLotus UEFI Windows Bootkit
-
-
A simple logging library implemented in C99
-
Cookie-Graber-BOF Public
Forked from Mr-Un1k0d3r/Cookie-and-Handle-StealerC or BOF file to extract WebKit master key to decrypt user cookie
C UpdatedMay 28, 2023 -
EtwTi-FluctuationMonitor Public
Forked from jdu2600/EtwTi-FluctuationMonitorUses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections
C++ UpdatedMay 17, 2023 -
Hunt-Weird-ImageLoads Public
Forked from thefLink/Hunt-Weird-ImageLoadsSmall tool to play with IOCs caused by Imageload events
-
blacklotus Public
Forked from realoriginal/blacklotusA attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
C UpdatedMar 23, 2023 -
titanldr-ng Public
Forked from realoriginal/titanldr-ngA newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.
-
BokuLoader Public
Forked from boku7/BokuLoaderA proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
-
D1rkLdr Public
Forked from SaadAhla/D1rkLdrShellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscall instruction address resolving at run time