a very rough work-in-progress adventure into learning nim by cobbling resources together to create a shellcode loader that implements common …

a very rough work-in-progress adventure into learning nim by cobbling resources together to create a shellcode loader that implements common …
A flexible tool that creates a minidump of the LSASS process. 1. Features It uses syscalls (with SysWhispers2) for most …
By Cas van Cooten (@chvancooten) With special thanks to Marcello Salvati (@byt3bl33der) and Fabian Mosch (@S3cur3Th1sSh1t) Description Update: NimPackt-v1 is …
Nimcrypt2 is yet another PE packer/loader designed to bypass AV/EDR. It is an improvement on my original Nimcrypt project, with …
The idea is to “translate” Windows OS privileges to a path leading to: administrator, integrity and/or confidentiality threat, availability threat, …
ExecuteAssembly is an alternative of CS execute-assembly, built with C/C++ and it can be used to Load/Inject .NET assemblies by; …
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls. All core syscalls are …