Block or Report
Block or report coldfusion39
Contact GitHub support about this user’s behavior. Learn more about reporting abuse.
Report abuseLists (14)
Sort Newest
Stars
Language
Sort by: Recently starred
Use hardware breakpoints to spoof the call stack for both syscalls and API calls
Example of using Sleep to create better named pipes.
This tiny project prevents the signtool from verifing cert time validity and let you sign your bin with outdated cert without changing system time manually
Windows x64 kernel mode rootkit process hollowing POC.
Experiment with d_olex's firmware and conducting "preboot" attack
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
old postex for grabbing a krbtgs for my current user
A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022
An unfinished DOUBLEPULSAR clone. Set to be redone at a later date
A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot
A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
A proof of concept I developed to improve Gargoyle back in 2018 to achieve true memory obfuscation from position independent code
A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.
Improved version of EKKO by @5pider that Encrypts only Image Sections
Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
Machinegun is an advanced version of Metasploit's railgun, capable of reliably running arbitrary Windows API functions on a remote computer and getting the results to the attacker's machine.
Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
A light-weight first-stage C2 implant written in Nim.
BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released at BSides Cymru 2023.
A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk