This is a tool suite consisting of miscellaneous offensive tooling aimed at red teamers/penetration testers to primarily aid in Defense Evasion TA0005
First module released as part of the AQUARMOURY suite to disable Windows Event and Sysmon logging.
Check it out here.
Framework to rapidly prototype DLL Hijacks.
Check it out here.
A stealthy native loader to deliver Stage-1/Beaconing implant OR Stage-2/Post-Ex RAT in-memory covertly and securely.
Check it out here.
A module to bypass UM/User-Mode/Ring-3 hooks utilised by security products and aid in evasion.
Check it out here.
A module to drop'n'load drivers using NtLoadDriver instead of the noisy service creation driver loading.
Check it out here.