Alternatives and similar repositories for ZeroTotal

Users that are interested in ZeroTotal are comparing it to the libraries listed below

• nullsection / Sneaky-DLL-Stager
  Reasonably undetected shellcode stager and executer.
  ☆37Updated last month
• S3cur3Th1sSh1t / NimShellcodeFluctuation
  ShellcodeFluctuation PoC ported to Nim
  ☆77Updated 2 years ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆90Updated 2 years ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆56Updated 2 years ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆81Updated 2 years ago
• x42en / sysplant
  Your syscall factory
  ☆123Updated 3 weeks ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆63Updated 6 months ago
• Bl4ckM1rror / PEAs
  ☆59Updated last year
• andreisss / Living-off-the-COM-Type-Coercion-Abuse
  This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…
  ☆47Updated 2 months ago
• latortuga71 / SharpChisel-NG
  ☆36Updated last year
• zimawhit3 / HellsGateNim
  A quick example of the Hells Gate technique in Nim
  ☆95Updated 3 years ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆88Updated 2 years ago
• patrickt2017 / VEHNetLoader
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆33Updated last week
• KINGSABRI / ServerlessRedirector
  Serverless Redirector in various cloud vendor for red team
  ☆72Updated 2 years ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆55Updated 2 years ago
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆121Updated 8 months ago
• codewhitesec / SysmonEnte
  ☆74Updated 2 years ago
• OffenseTeacher / Steganim
  ☆47Updated 2 years ago
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆120Updated last year
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆98Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆82Updated last year
• skelsec / asysocks
  Socks5 / Socks4 client and server library
  ☆70Updated last week
• eversinc33 / Godmode
  Tool for playing with Windows Access Token manipulation.
  ☆55Updated 2 years ago
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆61Updated 6 months ago
• caueb / Mockingjay
  Mockingjay process self injection POC
  ☆38Updated last year
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆70Updated 2 years ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆82Updated 7 months ago
• sidaf / moonshine
  ☆69Updated last year