Alternatives and similar repositories for BananaPhone

Users that are interested in BananaPhone are comparing it to the libraries listed below

• aus / gopherheaven

  View on GitHub
  Go implementation of the Heaven's Gate technique
  ☆102Feb 11, 2021Updated 5 years ago
• Binject / go-donut

  View on GitHub
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆357Sep 8, 2022Updated 3 years ago
• Ne0nd0g / go-shellcode

  View on GitHub
  A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…
  ☆1,169Feb 25, 2023Updated 2 years ago
• sh4hin / GoPurple

  View on GitHub
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆494Apr 1, 2021Updated 4 years ago
• xuanxuan0 / DripLoader

  View on GitHub
  Evasive shellcode loader for bypassing event-based injection detection (PoC)
  ☆822Aug 23, 2021Updated 4 years ago
• C-Sto / gosecretsdump

  View on GitHub
  Dump ntds.dit really fast
  ☆410Oct 1, 2021Updated 4 years ago
• f1zm0 / acheron

  View on GitHub
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆365Jun 13, 2023Updated 2 years ago
• trustedsec / COFFLoader

  View on GitHub
  ☆613Jul 21, 2025Updated 6 months ago
• Cracked5pider / CoffeeLdr

  View on GitHub
  Beacon Object File Loader
  ☆294Dec 3, 2023Updated 2 years ago
• phra / PEzor

  View on GitHub
  Open-Source Shellcode & PE Packer
  ☆2,066Feb 3, 2024Updated 2 years ago
• thefLink / RecycledGate

  View on GitHub
  Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
  ☆499Feb 3, 2022Updated 4 years ago
• am0nsec / HellsGate

  View on GitHub
  Original C Implementation of the Hell's Gate VX Technique
  ☆1,160Jun 28, 2021Updated 4 years ago
• CCob / BOF.NET

  View on GitHub
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆770Sep 4, 2024Updated last year
• CCob / goreflect

  View on GitHub
  Reflective DLL loading of your favorite Golang program
  ☆173Jan 27, 2020Updated 6 years ago
• ayoul3 / reflect-pe

  View on GitHub
  Reflectively load PE
  ☆105Aug 4, 2020Updated 5 years ago
• mgeeky / ElusiveMice

  View on GitHub
  Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
  ☆482Jul 12, 2023Updated 2 years ago
• C-Sto / goWMIExec

  View on GitHub
  Really stupid re-implementation of invoke-wmiexec
  ☆217Feb 25, 2023Updated 2 years ago
• med0x2e / ExecuteAssembly

  View on GitHub
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆595Jul 26, 2021Updated 4 years ago
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,867Aug 18, 2023Updated 2 years ago
• Cracked5pider / KaynLdr

  View on GitHub
  KaynLdr is a Reflective Loader written in C/ASM
  ☆554Dec 3, 2023Updated 2 years ago
• hlldz / RefleXXion

  View on GitHub
  RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, …
  ☆502Jan 25, 2022Updated 4 years ago
• CCob / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,164Mar 31, 2021Updated 4 years ago
• Binject / universal

  View on GitHub
  Universal Shared Library User-space Loader
  ☆235May 19, 2022Updated 3 years ago
• kyleavery / AceLdr

  View on GitHub
  Cobalt Strike UDRL for memory scanner evasion.
  ☆1,004Jun 4, 2024Updated last year
• ajpc500 / BOFs

  View on GitHub
  Collection of Beacon Object Files
  ☆633Nov 1, 2022Updated 3 years ago
• boku7 / BokuLoader

  View on GitHub
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,399Nov 22, 2023Updated 2 years ago
• vyrus001 / go-mimikatz

  View on GitHub
  A wrapper around a pre-compiled version of the Mimikatz executable for the purpose of anti-virus evasion.
  ☆627Sep 8, 2022Updated 3 years ago
• aahmad097 / AlternativeShellcodeExec

  View on GitHub
  Alternative Shellcode Execution Via Callbacks
  ☆1,695Nov 11, 2022Updated 3 years ago
• frkngksl / NiCOFF

  View on GitHub
  COFF and BOF Loader written in Nim
  ☆175Aug 1, 2022Updated 3 years ago
• crummie5 / FreshyCalls

  View on GitHub
  FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!
  ☆357Sep 1, 2022Updated 3 years ago
• D00MFist / Go4aRun

  View on GitHub
  Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process
  ☆231Jul 30, 2020Updated 5 years ago
• Cracked5pider / Ekko

  View on GitHub
  Sleep Obfuscation
  ☆814Dec 3, 2023Updated 2 years ago
• Accenture / CLRvoyance

  View on GitHub
  Managed assembly shellcode generation
  ☆280Mar 19, 2021Updated 4 years ago
• med0x2e / SigFlip

  View on GitHub
  SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…
  ☆1,253Aug 27, 2023Updated 2 years ago
• trickster0 / TartarusGate

  View on GitHub
  TartarusGate, Bypassing EDRs
  ☆651Jan 25, 2022Updated 4 years ago
• hasherezade / process_ghosting

  View on GitHub
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆682Mar 11, 2024Updated last year
• trustedsec / CS-Remote-OPs-BOF

  View on GitHub
  ☆1,117Jan 6, 2026Updated last month
• ropnop / go-clr

  View on GitHub
  A PoC package for hosting the CLR and executing .NET from Go
  ☆229Nov 10, 2022Updated 3 years ago
• jthuraisamy / SysWhispers2

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,789Sep 3, 2022Updated 3 years ago