Alternatives and similar repositories for ShellCodeLoader_Indirect_Syscalls

Users that are interested in ShellCodeLoader_Indirect_Syscalls are comparing it to the libraries listed below

• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆59Updated 9 months ago
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆36Updated 2 years ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆24Updated 8 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆72Updated 2 months ago
• NUL0x4C / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆48Updated 3 weeks ago
• Maldev-Academy / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆46Updated 3 weeks ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated last year
• d4rkiZ / EmbedExeLnk-
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆41Updated 2 years ago
• NioZow / bof-collection
  ☆23Updated 3 months ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆54Updated 2 years ago
• Shrfnt77 / AmsiBypass
  Bypassing Amsi using LdrLoadDll
  ☆44Updated 4 months ago
• dmcxblue / NtCreateUserProcessBOF
  An Aggressor Script that utilizes NtCreateUserProcess to run binaries
  ☆28Updated 4 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆48Updated 4 months ago
• ibaiC / FriendlyFireBOF
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆49Updated last month
• JetP1ane / Artemis
  Artemis - C++ Hell's Gate Syscall Implementation
  ☆33Updated last year
• rasta-mouse / KerbApp
  ☆29Updated last year
• HulkOperator / AuthStager
  ☆55Updated 7 months ago
• shantanu561993 / DLL-Sideload
  ☆40Updated 2 years ago
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆63Updated last month
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• Mav3rick33 / ZenLdr
  Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
  ☆100Updated 2 years ago
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated last year
• lap1nou / CLR_Heap_encryption
  ☆99Updated last year
• Teach2Breach / Red_Team_Rust
  Collection of Rust repos useful for Red Teamers.
  ☆32Updated 2 years ago
• OffenseTeacher / Steganim
  ☆48Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆57Updated 9 months ago
• 0xTriboulet / rssh-rs
  ☆40Updated this week
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆94Updated last year
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆49Updated 4 months ago
• NtDallas / sharp-execute
  Execute dotnet app from unmanaged process
  ☆75Updated 5 months ago