Alternatives and similar repositories for Wyrm

Users that are interested in Wyrm are comparing it to the libraries listed below

• fin3ss3g0d / StoneKeeper

  View on GitHub
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆208Dec 25, 2024Updated last year
• tijme / relocatable

  View on GitHub
  Boilerplate to develop raw and truly Position Independent Code (PIC).
  ☆116Jan 20, 2025Updated last year
• MEhrn00 / boflink

  View on GitHub
  Linker for Beacon Object Files
  ☆149Feb 8, 2026Updated last week
• zero2504 / EDR-GhostLocker

  View on GitHub
  AppLocker-Based EDR Neutralization
  ☆302Dec 19, 2025Updated last month
• EvilWhales / nightshade

  View on GitHub
  ☆36Jul 1, 2025Updated 7 months ago
• Yeeb1 / SockTail

  View on GitHub
  Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephe…
  ☆500Oct 3, 2025Updated 4 months ago
• garrettfoster13 / ldap_bofs

  View on GitHub
  Random BOFs for LDAP tradecraft
  ☆72Sep 9, 2025Updated 5 months ago
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• boku7 / patchwerk

  View on GitHub
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆195Feb 6, 2025Updated last year
• MythicAgents / Hannibal

  View on GitHub
  A Mythic Agent written in PIC C.
  ☆206Feb 4, 2025Updated last year
• quarkslab / proxyblob

  View on GitHub
  SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.
  ☆287Apr 29, 2025Updated 9 months ago
• gsmith257-cyber / better-sliver

  View on GitHub
  Adversary Emulation Framework
  ☆129Jul 1, 2025Updated 7 months ago
• Mazzy-Stars / lain_c2

  View on GitHub
  command control framework
  ☆29Feb 8, 2026Updated last week
• rasta-mouse / pwnlift

  View on GitHub
  Easy peasy file uploads
  ☆33Aug 29, 2025Updated 5 months ago
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆220Oct 30, 2025Updated 3 months ago
• joaoviictorti / uwd

  View on GitHub
  Call Stack Spoofing for Rust
  ☆210Jan 28, 2026Updated 2 weeks ago
• amjcyber / pwnlook

  View on GitHub
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Oct 9, 2024Updated last year
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆182Jan 17, 2026Updated 3 weeks ago
• praetorian-inc / ChromeAlone

  View on GitHub
  A tool to transform Chromium browsers into a C2 Implant
  ☆542Dec 17, 2025Updated last month
• AlmondOffSec / DCOMRunAs

  View on GitHub
  Lateral movement with DCOM DLL hijacking
  ☆177Jul 4, 2025Updated 7 months ago
• Teach2Breach / Tempest

  View on GitHub
  A command and control framework written in rust.
  ☆385Sep 4, 2025Updated 5 months ago
• decoder-it / ChgPass

  View on GitHub
  ☆137Feb 11, 2025Updated last year
• tlsbollei / KittyLoader

  View on GitHub
  KittyLoader is a highly evasive loader written in C / Assembly
  ☆254Sep 22, 2025Updated 4 months ago
• kleiton0x00 / Proxy-DLL-Loads

  View on GitHub
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆408Jan 11, 2026Updated last month
• hdbreaker / Nimhawk

  View on GitHub
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆219Nov 3, 2025Updated 3 months ago
• hkl1x / Bypass_AV

  View on GitHub
  免杀木马样本
  ☆102Oct 11, 2025Updated 4 months ago
• xforcered / RemoteMonologue

  View on GitHub
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Jul 1, 2025Updated 7 months ago
• TwoSevenOneT / EDR-Freeze

  View on GitHub
  EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.
  ☆801Nov 1, 2025Updated 3 months ago
• TwoSevenOneT / WSASS

  View on GitHub
  This is the tool to dump the LSASS process on modern Windows 11
  ☆555Nov 1, 2025Updated 3 months ago
• CroodSolutions / BeaconatorC2

  View on GitHub
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆92Jan 14, 2026Updated last month
• 0xTriboulet / InlineExecuteEx

  View on GitHub
  A BOF that's a BOF Loader and more
  ☆196Jan 17, 2026Updated 3 weeks ago
• BlackSnufkin / NyxInvoke

  View on GitHub
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆231Feb 12, 2025Updated last year
• ryanq47 / CS-EXTC2-ICMP

  View on GitHub
  An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.
  ☆114Oct 6, 2025Updated 4 months ago
• joaoviictorti / hypnus

  View on GitHub
  Sleep Obfuscation in Rust
  ☆277Dec 1, 2025Updated 2 months ago
• Acucarinho / havoc-obfuscator

  View on GitHub
  Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.
  ☆46Aug 13, 2025Updated 6 months ago
• Adaptix-Framework / AdaptixC2

  View on GitHub
  AdaptixC2 is a highly modular advanced redteam toolkit
  ☆2,697Feb 8, 2026Updated last week
• pard0p / Self-Cleaning-PICO-Loader

  View on GitHub
  Self-cleaning in-memory PICO loader for Crystal Palace. Automatically erases traces and operates entirely in memory for stealthy payload …
  ☆48Nov 2, 2025Updated 3 months ago
• rtecCyberSec / BitlockMove

  View on GitHub
  Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
  ☆433Jun 27, 2025Updated 7 months ago
• paranoidninja / BRC4-BOF-Artillery

  View on GitHub
  ☆145Nov 6, 2025Updated 3 months ago