Alternatives and similar repositories for AM

Users that are interested in AM are comparing it to the libraries listed below

• KINGSABRI / AssemblyLoader
  Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()
  ☆34Updated 4 years ago
• GetRektBoy724 / SharpLoadLibrary
  An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
  ☆56Updated 3 years ago
• Mantraufo / KanonSys
  Bypass Windows defender syscall
  ☆18Updated 4 years ago
• dosxuz / ProcessGhosting
  Small POC for process ghosting
  ☆39Updated 3 years ago
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆27Updated 4 years ago
• LuxNoBulIshit / Smug_Fu3k
  ☆53Updated 3 years ago
• GetRektBoy724 / TripleS
  Extracting Syscall Stub, Modernized
  ☆65Updated 3 years ago
• Shrfnt77 / DynamicSyscalls
  DynamicSyscalls is a library written in .net resolves the syscalls dynamically (Has nothing to do with hooking/unhooking)
  ☆66Updated 2 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆36Updated 3 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆92Updated 3 years ago
• Yet-Zio / WusaBypassUAC
  UAC bypass abusing WinSxS in "wusa.exe". Referred from and similar to: https://github.com/L3cr0f/DccwBypassUAC , Kudos to L3cr0f and Fuz…
  ☆33Updated 4 years ago
• Aetsu / SLib
  SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#
  ☆65Updated last year
• mobdk / Sigma
  Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx
  ☆15Updated 4 years ago
• GetRektBoy724 / JALSI
  JALSI - Just Another Lame Shellcode Injector
  ☆30Updated 3 years ago
• hackerhouse-opensource / MsSettingsDelegateExecute
  Bypass UAC on Windows 10/11 x64 using ms-settings DelegateExecute registry key.
  ☆77Updated 2 years ago
• reveng007 / reveng_loader
  C# loader capable of running stage-1 from remote url, file path as well as file share
  ☆16Updated 2 years ago
• breakid / SharpUtils
  A collection of C# utilities intended to be used with Cobalt Strike's execute-assembly
  ☆48Updated 2 years ago
• vestjoe / cobaltstrike_services
  AutoStart teamserver and listeners with services
  ☆74Updated 3 years ago
• OlivierLaflamme / DNSWho
  transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV
  ☆50Updated 4 years ago
• dobin / antniumui
  The Web UI for Antnium
  ☆27Updated 3 years ago
• leftp / SpoolSamplerNET
  Implementation of SpoolSample without rDLL
  ☆28Updated 4 years ago
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆51Updated 2 years ago
• GetRektBoy724 / ReversePowernoid
  Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)
  ☆30Updated 3 years ago
• scriptchildie / MaliciousVBA
  Reverse shell macro using Word VBA
  ☆15Updated 4 years ago
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆65Updated 3 years ago
• aaaddress1 / xlsKami
  Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets
  ☆48Updated 3 years ago
• GetRektBoy724 / SysGate
  One gate to all syscalls!
  ☆23Updated 3 years ago
• 0xthirteen / FileWriter
  .NET project for writing files to local or remote hosts
  ☆41Updated 5 years ago
• FuzzySecurity / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆33Updated 2 years ago
• Wh04m1001 / MSIExecEoP
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆30Updated 2 years ago