Alternatives and similar repositories for NativePayloads

Users that are interested in NativePayloads are comparing it to the libraries listed below

• brosck / Awesome-AV-EDR-XDR-Bypass
  Awesome AV/EDR/XDR Bypass Tips
  ☆285Updated 2 years ago
• HavocFramework / Modules
  Modules used by the Havoc Framework
  ☆264Updated last year
• kleiton0x00 / RemoteShellcodeExec
  Execute shellcode from a remote-hosted bin file using Winhttp.
  ☆241Updated 2 years ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆558Updated 3 weeks ago
• senzee1984 / micr0_shell
  micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.
  ☆208Updated last year
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆226Updated last year
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆304Updated 2 years ago
• Bl4ckM1rror / FUD-UUID-Shellcode
  ☆335Updated 2 years ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆145Updated 2 years ago
• CodeXTF2 / WindowSpy
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆281Updated 11 months ago
• trevorsaudi / Mshikaki
  A shellcode injection tool showcasing various process injection techniques
  ☆136Updated 2 years ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆390Updated 2 years ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆389Updated last year
• reveng007 / SharpGmailC2
  Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol
  ☆265Updated 4 months ago
• SaadAhla / TakeMyRDP
  A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…
  ☆398Updated 2 years ago
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆352Updated 2 years ago
• S12cybersecurity / RDPCredentialStealer
  RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
  ☆259Updated 2 years ago
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆396Updated last year
• brosck / Condor
  「🛡️」AVs/EDRs Evasion tool
  ☆103Updated last year
• Idov31 / MrKaplan
  MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
  ☆271Updated 2 years ago
• netero1010 / RDPHijack-BOF
  Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
  ☆312Updated 3 years ago
• cepxeo / dll4shell
  Shellcode launcher for AV bypass
  ☆215Updated 2 years ago
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆214Updated 2 years ago
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆460Updated last year
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆388Updated 2 years ago
• N1k0la-T / CVE-2023-36745
  ☆168Updated 2 years ago
• VirtualAlllocEx / Create-Thread-Shellcode-Fetcher
  This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…
  ☆256Updated 2 years ago
• NUL0x4C / HellShell
  transform your payload into ipv4/ipv6/mac arrays
  ☆242Updated 3 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆199Updated 3 years ago
• smokeme / airstrike
  ☆169Updated last year