EddieIvan01 / Gld
Licence: mpl-2.0
Go shellcode LoaDer
Stars: ✭ 91
Programming Languages
go
31211 projects - #10 most used programming language
Projects that are alternatives of or similar to Gld
Payloadsallthethings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+36063.74%)
Mutual labels: bypass
Edxposed Snapchat Bypass
Elder driver Xposed Framework. W / Snapchat Bypass
Stars: ✭ 49 (-46.15%)
Mutual labels: bypass
Ultimateapplockerbypasslist
The goal of this repository is to document the most common techniques to bypass AppLocker.
Stars: ✭ 1,186 (+1203.3%)
Mutual labels: bypass
Android Reports And Resources
A big list of Android Hackerone disclosed reports and other resources.
Stars: ✭ 590 (+548.35%)
Mutual labels: bypass
Emofishes
Emofishes is a collection of proof of concepts that help improve, bypass or detect virtualized execution environments (focusing on the ones setup for malware analysis).
Stars: ✭ 11 (-87.91%)
Mutual labels: bypass
Mhddos
Best DDoS Attack Script Python3, Cyber Attack With 36 Method
Stars: ✭ 55 (-39.56%)
Mutual labels: bypass
Nac bypass
Script collection to bypass Network Access Control (NAC, 802.1x)
Stars: ✭ 79 (-13.19%)
Mutual labels: bypass
Allaboutbugbounty
All about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (+732.97%)
Mutual labels: bypass
Ripv6
Random IPv6 - circumvents restrictive IP address-based filter and blocking rules
Stars: ✭ 10 (-89.01%)
Mutual labels: bypass
Gtfonow
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries
Stars: ✭ 68 (-25.27%)
Mutual labels: bypass
Thefatrat
Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…
Stars: ✭ 5,944 (+6431.87%)
Mutual labels: bypass
Hacktheworld
An Python Script For Generating Payloads that Bypasses All Antivirus so far .
Stars: ✭ 527 (+479.12%)
Mutual labels: bypass
Humanoid
Node.js package to bypass CloudFlare's anti-bot JavaScript challenges
Stars: ✭ 88 (-3.3%)
Mutual labels: bypass
Att
Using Asuswrt-Merlin to bypass AT&T's residential gateway
Stars: ✭ 79 (-13.19%)
Mutual labels: bypass
Go shellcode LoaDer
This repo is a demo and lacks enough features to bypass AV/EDR. I have written a private framework with more evasion techs, it may be made public in the future
Usage
Generate shellcode via CS/MSF first, then use gld to compile wrapped-binary:
./gld shellcode.bin [x64/x86]
Tech
Loader
- Shellcode is encrypted via AES-GCM, it will be decrypted and loaded in runtime
- Use
ntdll!ZwProtectVirtualMemory
instead ofkernelbase!VirtualProtect
(bypass possible hooks) to bypass DEP - Use local variable instead of string literal to pass procedure name (
string([]byte{...})
), to avoid static memory matching
Detector
- VM
- Check if has a blacklist MAC prefixes
- Check if physics memory < 2GB or number of CPU cores < 2 (cpuid and
GlobalMemoryStatusEx
)
- DBG
- Check if there is a debugger process (
CreateToolhelp32Snapshot
) - Check if current process is being debugged by a user-mode debugger (
IsDebuggerPresent
)
- Check if there is a debugger process (
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].