Stars
Tylous / Freeze.rs
Forked from optiv/Freeze.rsFreeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
Rust Implementation of SharpDllProxy for DLL Proxying Technique
An Advanced, Evasive, Persistent, Shellcode Loader and Executor for Windows
Simple PoC to locate hooked functions by EDR in ntdll.dll
Obfusheader.h is a portable header file for C++14 compile-time obfuscation.
Perfect DLL Proxying using forwards with absolute paths.
https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/
A tool to create a JScript file which loads a .NET v2 assembly from memory.
C2 Infrastructure Automation
Automated .NET AppDomain hijack payload generation
a tool to check wether or not webclient is active on machines, supports the use of subnets
Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.
A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.