Alternatives and similar repositories for agartha

Users that are interested in agartha are comparing it to the libraries listed below

• RenderZ0n3 / Malware-Development

  View on GitHub
  ☆10Jul 1, 2023Updated 2 years ago
• mobdk / CoreClass

  View on GitHub
  Mimikatz embedded as classes
  ☆28Oct 25, 2021Updated 4 years ago
• 0xTriboulet / Cycotic

  View on GitHub
  A python polymorphic engine for C programs
  ☆12Dec 8, 2023Updated 2 years ago
• voidvxvi / EnableAllTokenPrivs

  View on GitHub
  Enable or Disable TokenPrivilege(s)
  ☆15May 17, 2024Updated last year
• Teach2Breach / byont

  View on GitHub
  bring your own clean ntdll (or other MS dlls)
  ☆28Jul 14, 2025Updated 7 months ago
• t1Sh1n4 / Umbrella

  View on GitHub
  Umbrella will protect your shellcode from the rain.
  ☆31Jun 4, 2025Updated 8 months ago
• BlackHat-Ashura / Process_Ghosting

  View on GitHub
  Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…
  ☆17May 6, 2024Updated last year
• EricEsquivel / OpsLoader

  View on GitHub
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Sep 25, 2024Updated last year
• Sh3lldon / WinPWN

  View on GitHub
  This repo for Windows x32-x64 Kernel/User Mode Exploitation writeups and exploits
  ☆24Oct 20, 2025Updated 3 months ago
• ShorSec / DllNotificationInjection

  View on GitHub
  A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…
  ☆32Aug 23, 2023Updated 2 years ago
• Ne0nd0g / go-coff

  View on GitHub
  Load and execute a common object file format (COFF) in the current process
  ☆32Mar 9, 2024Updated last year
• Print3M / c-to-shellcode

  View on GitHub
  From C to binary shellcode converter.
  ☆52Nov 11, 2025Updated 3 months ago
• GetRektBoy724 / SyscallShuffler

  View on GitHub
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Apr 5, 2022Updated 3 years ago
• inb1ts / birdnet-poc

  View on GitHub
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆41Jul 9, 2023Updated 2 years ago
• lukasrdarev / PySoSerial

  View on GitHub
  ☆12Jun 26, 2023Updated 2 years ago
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• AnonKryptiQuz / I-Espresso

  View on GitHub
  I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrat…
  ☆85Oct 17, 2024Updated last year
• Shrfnt77 / AmsiBypass

  View on GitHub
  Bypassing Amsi using LdrLoadDll
  ☆47Jan 8, 2025Updated last year
• PaloAltoNetworks / pan-mcp-relay

  View on GitHub
  Palo Alto Networks AI Runtime Security Model Context Protocol (MCP) Relay Server
  ☆30Jan 27, 2026Updated 2 weeks ago
• nu11zy / rscc

  View on GitHub
  Reverse SSH C2
  ☆28Sep 19, 2025Updated 4 months ago
• LaCream1 / Malicious-QR-Code

  View on GitHub
  🚨 Generate and explore malicious QR codes for cybersecurity education and authorized penetration testing to enhance digital security awa…
  ☆26Updated this week
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 3 years ago
• Alloyd031 / UWPStation

  View on GitHub
  UWPStation is an app that looks like VMware Workstation.
  ☆10Jul 1, 2024Updated last year
• h6nt3r / xsser

  View on GitHub
  A Powerful XSS,RXSS,BXSS finding tool
  ☆30Oct 29, 2025Updated 3 months ago
• idkhidden / winapipatcher

  View on GitHub
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆43Sep 19, 2024Updated last year
• 0xd3xt3r / gandcrab-javascript-dropper

  View on GitHub
  This is the gandcrab v5.0.3 javascript dropper
  ☆10Apr 29, 2020Updated 5 years ago
• sleepyG8 / GlyphDbg

  View on GitHub
  RE for champions
  ☆15Jan 28, 2026Updated 2 weeks ago
• rbmm / remap

  View on GitHub
  break link between dll and it file on disk
  ☆12Sep 2, 2024Updated last year
• rkbennett / icmpsh

  View on GitHub
  Simple reverse ICMP shell
  ☆14Apr 30, 2024Updated last year
• dosxuz / TradecraftImrprovement

  View on GitHub
  This repository will contain source codes from the Tradecraft improvement blog series
  ☆14Mar 27, 2025Updated 10 months ago
• paulmowat / EncryptDecrypt

  View on GitHub
  C# & Node.js Encrypt/Decrypt
  ☆12Jul 13, 2018Updated 7 years ago
• gophish / gomail

  View on GitHub
  The best way to send emails in Go.
  ☆12Feb 4, 2021Updated 5 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Apr 21, 2022Updated 3 years ago
• win2007 / MyMalwareDatabase

  View on GitHub
  This is my malware database, but I AM NOT RESPONSIABLE FOR ANY DAMAGE + pan koza is a skid and ready to fork this $h!t.
  ☆12May 26, 2024Updated last year
• rodolfomarianocy / Unauthenticated-RCE-FUXA-CVE-2023-33831

  View on GitHub
  Description and exploit of CVE-2023-33831 affecting FUXA web-based Process Visualization (SCADA/HMI/Dashboard) software.
  ☆10Oct 27, 2024Updated last year
• iamunixtz / jshunter-burp

  View on GitHub
  A powerful Burp Suite extension that automatically detects JavaScript URLs from HTTP traffic, scans them using TruffleHog for secrets det…
  ☆31Oct 23, 2025Updated 3 months ago
• Manticore-Platform / ransomware-emulation

  View on GitHub
  Manticore Ransomware Emulation - Educational Purpose Only!
  ☆10Aug 2, 2020Updated 5 years ago
• vicmarcag / Drawing-with-Fourier-Epicycles

  View on GitHub
  MATLAB GUI that computes the required epicycles to match a custom drawing by using DFTs
  ☆10Oct 5, 2020Updated 5 years ago
• ochronus / ArpSpoof

  View on GitHub
  A simple proof-of-concept ARP Spoofing package
  ☆12Nov 24, 2011Updated 14 years ago