BOF RunPE is a Beacon Object File for Cobalt Strike that executes PE files entirely in-memory within the beacon process. Unlike traditional fork&run, no child process is spawned, no console is created, and no pipe...
LazyDLLSideload A Rust-based tool for generating DLL proxy/sideload projects for red team engagements. Automatically parses PE export tables and generates ready-to-compile Rust projects with your payload embedded. LazyDLLSideload automates the process of creating DLL...
Cobalt Strike Linux Beacon A proof-of-concept custom Linux Beacon written in C that communicates with the Cobalt Strike teamserver using the HTTP/S protocol. The goal of this project isn’t to be a fully featured...
A new tool has surfaced on the dark web, quickly drawing the attention of security professionals—and not for benign reasons. The service, known as DIG AI, is an artificial intelligence platform devoid of any...
TrapFlagForSyscalling: Bypass user-land hooks by syscall tampering via the Trap Flag The Trap Flag (TF) is a special bit in the CPU’s EFLAGS register that forces the processor to generate a single-step exception after every instruction. This behavior...
