Alternatives and similar repositories for BananaPhone

Users that are interested in BananaPhone are comparing it to the libraries listed below

• sh4hin / GoPurple
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆489Updated 4 years ago
• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆340Updated 2 years ago
• itm4n / PPLdump
  Dump the memory of a PPL with a userland exploit
  ☆876Updated 2 years ago
• rvrsh3ll / BOF_Collection
  Various Cobalt Strike BOFs
  ☆659Updated 2 years ago
• ajpc500 / BOFs
  Collection of Beacon Object Files
  ☆596Updated 2 years ago
• xuanxuan0 / DripLoader
  Evasive shellcode loader for bypassing event-based injection detection (PoC)
  ☆783Updated 3 years ago
• trustedsec / COFFLoader
  ☆554Updated last month
• Cracked5pider / KaynLdr
  KaynLdr is a Reflective Loader written in C/ASM
  ☆540Updated last year
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆590Updated 2 years ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆740Updated 10 months ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆685Updated last year
• C-Sto / gosecretsdump
  Dump ntds.dit really fast
  ☆397Updated 3 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆745Updated last year
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆646Updated 2 years ago
• boku7 / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,340Updated last year
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆949Updated last year
• wietze / windows-dll-hijacking
  Project for identifying executables and DLLs vulnerable to relative path DLL hijacking.
  ☆471Updated last year
• Wra7h / FlavorTown
  Various ways to execute shellcode
  ☆492Updated last year
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆488Updated this week
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆485Updated 2 years ago
• chvancooten / NimPackt-v1
  Nim-based assembly packer and shellcode loader for opsec & profit
  ☆483Updated 2 years ago
• Idov31 / Cronos
  PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
  ☆590Updated last year
• boku7 / spawn
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆462Updated 2 years ago
• ConsciousHacker / WFH
  ☆416Updated 2 years ago
• Cracked5pider / Ekko
  Sleep Obfuscation
  ☆769Updated last year
• RedCursorSecurityConsulting / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆949Updated 2 years ago
• outflanknl / InlineWhispers
  Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)
  ☆318Updated 3 years ago
• CCob / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,148Updated 4 years ago
• deepinstinct / LsassSilentProcessExit
  Command line interface to dump LSASS memory to disk via SilentProcessExit
  ☆449Updated 4 years ago
• NUL0x4C / AtomPePacker
  A Highly capable Pe Packer
  ☆713Updated 2 years ago