Materials for the workshop "Red Team Ops: Havoc 101"
-
Updated
Apr 27, 2023 - C#
Materials for the workshop "Red Team Ops: Havoc 101"
A C# DLL injection library
An open-source process injection enumeration tool written in C#
C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
Process inject technique "Thread hijacking" via csharp
Remote Thread Injection by C# + Delegate Techniques
Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.
Remote Thread Injection by C# Delegate
Process injection framework in C#. It uses dynamic function loading using delegates and AES-encryption for strings and payloads
Process doppelganging c# implementation (NOT FINISHED)
Code snippet to create a process using the "PROCESS_CREATION_MITIGATION_POLICY_BLOCK_NON_MICROSOFT_BINARIES_ALWAYS_ON" flag
Proof of concept, example of process hollowing, generating reverse TCP shellcode. Conducted on Windows 10 64 Bit 22H2.
adds itself as an exception to windows defender, moves itself to AppData and adds itself as a startup file.
Add a description, image, and links to the process-injection topic page so that developers can more easily learn about it.
To associate your repository with the process-injection topic, visit your repo's landing page and select "manage topics."