listinvest
Follow
-
AssemblyCRT Public
Forked from Straightmaster/AssemblyCRTSimple CRT DLL injection implemented in assembly using FASM
Assembly UpdatedSep 5, 2024 -
DriverJack Public
Forked from klezVirus/DriverJackHijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
C++ MIT License UpdatedAug 11, 2024 -
File-Tunnel Public
Forked from fiddyschmitt/File-TunnelTunnel TCP connections through a file
C# MIT License UpdatedAug 11, 2024 -
DeadPotato Public
Forked from lypd0/DeadPotatoDeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…
C# Apache License 2.0 UpdatedAug 5, 2024 -
LayeredSyscall Public
Forked from WKL-Sec/LayeredSyscallGenerating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR hooks in Windows.
C UpdatedJul 31, 2024 -
edr_blocker Public
Forked from TierZeroSecurity/edr_blockerBlocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination IP addresses are parsed based on the server name in TLS Cli…
Python BSD 2-Clause "Simplified" License UpdatedJul 23, 2024 -
NativeDump Public
Forked from ricardojoserf/NativeDumpDump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
C# UpdatedJul 16, 2024 -
RedGuard Public
Forked from wikiZ/RedGuardRedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
Go GNU General Public License v2.0 UpdatedJun 18, 2024 -
RWX_MEMEORY_HUNT_AND_INJECTION_DV Public
Forked from Offensive-Panda/RWX_MEMEORY_HUNT_AND_INJECTION_DVAbusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
C++ MIT License UpdatedMay 27, 2024 -
GhostlyHollowingViaTamperedSyscalls Public
Forked from Maldev-Academy/GhostlyHollowingViaTamperedSyscallsImplementing the ghostly hollowing PE injection technique using tampered syscalls.
C MIT License UpdatedMay 26, 2024 -
writing_nimless Public
Forked from m4ul3r/writing_nimlessWriting Nimless Nim - Slides and source for BSIDESKC 2024 talk.
Nim MIT License UpdatedMay 23, 2024 -
OdinLdr Public
Forked from emdnaia/OdinLdrCobaltstrike UDRL with memory evasion
C UpdatedMay 21, 2024 -
ChaiLdr Public
Forked from Cipher7/ChaiLdrAV bypass while you sip your Chai!
C MIT License UpdatedMay 17, 2024 -
Nimperiments Public
Forked from RePRGM/NimperimentsVarious one-off pentesting projects written in Nim. Updates happen on a whim.
Nim UpdatedApr 19, 2024 -
-
wosa-xfs-printer Public
Forked from mr-mousavi/wosa-xfs-printeratm printer device manager simple code
C UpdatedJan 20, 2024 -
wosa-xfs-pinpad-epp Public
Forked from mr-mousavi/wosa-xfs-pinpad-eppatm pin pad(Encryptor) device manager simple code
C UpdatedJan 20, 2024 -
wosa-xfs-careReader Public
Forked from mr-mousavi/wosa-xfs-careReaderatm card reader device manager simple code
C UpdatedJan 20, 2024 -
base64-assembler-FASM-Windows Public
Forked from 0x426C6F6F646479/base64-assembler-FASM-WindowsJust base64 written in pure assembler for Windows.
Assembly UpdatedDec 17, 2023 -
UnlinkDLL Public
Forked from frkngksl/UnlinkDLLDLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
Nim UpdatedDec 15, 2023 -
-
NtRemoteLoad Public
Forked from florylsk/NtRemoteLoadRemote Shellcode Injector
C++ UpdatedAug 27, 2023 -
ScareCrow Public
Forked from optiv/ScareCrowScareCrow - Payload creation framework designed around EDR bypass.
Go UpdatedAug 18, 2023 -
GIUDA Public
Forked from foxlox/GIUDAAsk a TGS on behalf of another user without password
Pascal UpdatedJul 26, 2023 -
TGSThief Public
Forked from MzHmO/TGSThiefMy implementation of the GIUDA project in C++
C++ UpdatedJul 25, 2023 -
BlackLotus Public
Forked from ldpreload/BlackLotusBlackLotus UEFI Windows Bootkit
C UpdatedJul 15, 2023 -
SharpDXWebcam Public
Forked from snovvcrash/SharpDXWebcamUtilizing the DirectX and DShowNET assemblies to record video from the host's webcam
C# BSD 3-Clause "New" or "Revised" License UpdatedJul 12, 2023 -
RecycledInjector Public
Forked from florylsk/RecycledInjectorNative Syscalls Shellcode Injector
C UpdatedJul 2, 2023 -
ggreg20-v3-homeassistant-esphome-example Public
Forked from iotdevicesdev/ggreg20-v3-homeassistant-esphome-exampleIoT-devices GGreg20_V3 Ionizing Radiation Detector module under Home Assistant server with ESPHome plugin setup example
Apache License 2.0 UpdatedJun 22, 2023 -