Cracked5pider/KaynStrike

This repository has been archived on 06/Apr/2024
Stars
403
Rank 106,718 (Top 3 %)
Language
C
Created over 2 years ago
Updated 10 months ago

Cracked5pider/KaynStrike

Cracked5pider

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

UDRL for CS

KaynStrike

A User Defined Reflective Loader for Cobalt Strike Beacon that spoofs the thread start address and frees itself after entry point was executed.

Thread Start Address spoofing

Reflective Loader cleanup

Proof

How to use this

Just load the KaynStrike.cna agressor script and build a stageless beacon (tested this as an exe)

Credits

S4ntiagoP. Had the idea from one of his tweets to free the reflective loader
Austin Hudson (aka SecIdiot). Reflective Loader Design & ROP Chain

Stardust

A modern 64-bit position independent implant template

Ekko

Sleep Obfuscation

KaynLdr

KaynLdr is a Reflective Loader written in C/ASM

LdrLibraryEx

A small x64 library to load dll's into memory.

CoffeeLdr

Beacon Object File Loader

conti_locker

Conti Locker source code

CodeCave

A bunch of scripts and code i wrote.

LsaParser

A shitty (and old) lsass parser.

eop24-26229

A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user

unguard-eat

havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets

kaine-assembly

a demo module for the kaine agent to execute and inject assembly modules

Cracked5pider

Rhaast

doesnt work and wont work on it anymore