Alternatives and similar repositories for obfuscator-llvm:

Users that are interested in obfuscator-llvm are comparing it to the libraries listed below

• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆47Updated 2 years ago
• smokeme / asar-backdoor
  ☆23Updated this week
• MrAle98 / Sliver-CPPImplant2
  Sliver agent rewritten in C++
  ☆44Updated 6 months ago
• ScriptIdiot / sleepmask_ekko_cfg
  Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
  ☆43Updated 2 years ago
• wolfcod / beacondbg
  Beacon Debugger
  ☆40Updated 4 months ago
• Mav3rick33 / ZenLdr
  Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
  ☆101Updated 2 years ago
• Ap3x / COFF-Loader
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆43Updated last year
• JetP1ane / Artemis
  Artemis - C++ Hell's Gate Syscall Implementation
  ☆32Updated last year
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆53Updated 2 years ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated last year
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆70Updated last year
• lap1nou / CLR_Heap_encryption
  ☆98Updated last year
• jsecurity101 / RandomPOCs
  Repo that holds random POCs
  ☆49Updated last year
• waawaa / breakcyserver
  ☆47Updated 2 years ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆43Updated 2 years ago
• FalconForceTeam / bof-winrm-plugin-jump
  ☆25Updated 2 months ago
• EspressoCake / BOF_NativeAPI_Definitions-VSCode
  A VSCode plugin to assist with BOF development.
  ☆34Updated 7 months ago
• dis0rder0x00 / ParentProcessManipulation-LNK
  Using LNK files and user input simulation to start processes under explorer.exe
  ☆24Updated 6 months ago
• NtDallas / sharp-execute
  Execute dotnet app from unmanaged process
  ☆71Updated 2 months ago
• 0x3rhy / BypassCredGuard-BOF
  BypassCredGuard CS BOF
  ☆32Updated 2 months ago
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆83Updated 2 years ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆52Updated last year
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆29Updated 3 years ago
• rasta-mouse / KerbApp
  ☆28Updated 9 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆74Updated last year
• WKL-Sec / StackMask
  A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
  ☆62Updated last year
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆52Updated 2 months ago
• susMdT / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆48Updated last year
• maxDcb / C2Implant
  Windows C++ Implant for Exploration C2
  ☆28Updated last week
• d4rkiZ / EmbedExeLnk-
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆35Updated last year