TangledWinExec
Lunar
TangledWinExec | Lunar | |
---|---|---|
5 | 1 | |
851 | 582 | |
- | - | |
8.5 | 0.0 | |
18 days ago | 7 months ago | |
C# | C# | |
BSD 3-clause "New" or "Revised" License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
TangledWinExec
- EaDumper: dump Windows NTFS file extended attributes
- Shellcode Reflective DLL Injection This directory is for tools to test sRDI (Shellcode Reflective DLL Injection)
- DarkLoadLibrary: Load DLL with the Dark Load Library technique.
- PPEditor: This is a Kernel-mode WinDbg extension to edit Protection Level for processes.
- TangledWinExec: C# PoCs for investigation of Windows process execution techniques investigation
Lunar
-
Modern examples for DLL injection?
Link to GitHub repository
What are some alternatives?
DcRat - A simple remote tool in C#.
GalaxyBudsClient - Unofficial Galaxy Buds Manager for Windows, macOS, and Linux
SharpUnhooker - C# Based Universal API Unhooker
RemoteNET - Examine, create and interact with remote objects in other .NET processes.
Sandman - Sandman is a NTP based backdoor for red team engagements in hardened networks.
Shellcode-Injection-Techniques - A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.
WMEye - WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
ManagedInjector - A C# DLL injection library
QuasarRAT - Remote Administration Tool for Windows [Moved to: https://github.com/quasar/Quasar]
Il2CppDumper - Unity il2cpp reverse engineer
Quasar - Remote Administration Tool for Windows
Reloaded-II - Next Generation Universal .NET Core Powered Mod Loader compatible with anything X86, X64.