Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Nix

F#

PHP

Swift

Zig

Python

MATLAB

Go

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Clojure

Racket

Ada

Erlang

Dart

Julia

Nix

C

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇯🇪 Jersey

🇨🇱 Chile

🇻🇳 Vietnam

🇳🇦 Namibia

🇸🇪 Sweden

🇸🇧 Solomon Islands

🇹🇷 Türkiye

🇻🇺 Vanuatu

All Countries Compare Countries

kleiton0x00/RemoteShellcodeExec

Stars
220
Rank 180,422 (Top 4 %)
Language
C
Created over 1 year ago
Updated over 1 year ago

kleiton0x00/RemoteShellcodeExec

kleiton0x00

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Execute shellcode from a remote-hosted bin file using Winhttp.

RemoteShellcodeExec

A simple PoC of executing shellcode from a remote-hosted bin file using Winhttp. This is demo of the relevant blog post: Shellcodes are dead, long live fileless shellcodes.

TL;DR

Executing the shellcode from a remote-hosted server, will make the executable file itself drastically reduce it's entropy.
Implemented a simple heap encryption, to avoid the shellcode being visible
Profit (0/26 detections)

Demo

U8LjkcA.mp4

Credits

https://decoded.avast.io/threatintel/decoding-cobalt-strike-understanding-payloads/
https://twitter.com/teamcymru_S2/status/1604091964386705409
https://www.huntress.com/blog/hackers-no-hashing-randomizing-api-hashes-to-evade-cobalt-strike-shellcode-detection

Advanced-SQL-Injection-Cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

ppmap

A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.

Proxy-DLL-Loads

A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.

XSScope

XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.

RedditC2

Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.

Shelltropy

A technique of hiding malicious shellcode via Shannon encoding.

CORS-one-liner

A one liner Bash command which finds CORS in every possible endpoint.

CRLF-one-liner

A simple Bash one liner with aim to automate CRLF vulnerability scanning.

HTTP-Smuggling-Calculator

Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.

Todesstern

A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities

contexter

Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3

kleiton0x00.github.io

kleiton0x00