Malware Development

Ghost in the Beacon: Mastering In-Memory PE Execution with BOF RunPE BOF RunPE Cobalt Strike

BOF RunPE Cobalt Strike

Ghost in the Beacon: Mastering In-Memory PE Execution with BOF RunPE

ddos March 23, 2026

BOF RunPE is a Beacon Object File for Cobalt Strike that executes PE files entirely in-memory within...

Evasion in Rust: Automate Your Stealth with the LazyDLLSideload Proxy Generator LazyDLLSideload Rust

LazyDLLSideload Rust

Evasion in Rust: Automate Your Stealth with the LazyDLLSideload Proxy Generator

ddos February 25, 2026

LazyDLLSideload A Rust-based tool for generating DLL proxy/sideload projects for red team engagements. Automatically parses PE export...

Cobalt Strike Linux Beacon: Building a Custom Cobalt Strike Beacon for Linux

Linux Beacon

Cobalt Strike Linux Beacon: Building a Custom Cobalt Strike Beacon for Linux

ddos February 15, 2026

Cobalt Strike Linux Beacon A proof-of-concept custom Linux Beacon written in C that communicates with the Cobalt...

The Pitch-Black Bot: DIG AI Emerges as the Dark Web’s Uncensored Malware Engine DIG

DIG

The Pitch-Black Bot: DIG AI Emerges as the Dark Web’s Uncensored Malware Engine

ddos December 22, 2025

A new tool has surfaced on the dark web, quickly drawing the attention of security professionals—and not...

The Single-Step Sniper: Bypassing EDR Hooks with TrapFlagForSyscalling Syscall Tampering Trap Flag

Syscall Tampering Trap Flag

The Single-Step Sniper: Bypassing EDR Hooks with TrapFlagForSyscalling

ddos December 22, 2025

TrapFlagForSyscalling: Bypass user-land hooks by syscall tampering via the Trap Flag The Trap Flag (TF) is a special bit...