Alternatives and similar repositories for NativePayloads

Users that are interested in NativePayloads are comparing it to the libraries listed below

• CodeXTF2 / WindowSpy
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆280Updated 10 months ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆529Updated last month
• brosck / Awesome-AV-EDR-XDR-Bypass
  Awesome AV/EDR/XDR Bypass Tips
  ☆285Updated 2 years ago
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆352Updated 2 years ago
• kleiton0x00 / RemoteShellcodeExec
  Execute shellcode from a remote-hosted bin file using Winhttp.
  ☆239Updated 2 years ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆300Updated 2 years ago
• icyguider / LightsOut
  Generate an obfuscated DLL that will disable AMSI & ETW
  ☆330Updated last year
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆388Updated last year
• HavocFramework / Modules
  Modules used by the Havoc Framework
  ☆253Updated last year
• trevorsaudi / Mshikaki
  A shellcode injection tool showcasing various process injection techniques
  ☆136Updated 2 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆210Updated 3 years ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆386Updated 2 years ago
• Bl4ckM1rror / FUD-UUID-Shellcode
  ☆332Updated 2 years ago
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆227Updated last year
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆145Updated 2 years ago
• cepxeo / dll4shell
  Shellcode launcher for AV bypass
  ☆216Updated 2 years ago
• NUL0x4C / HellShell
  transform your payload into ipv4/ipv6/mac arrays
  ☆237Updated 3 years ago
• SaadAhla / TakeMyRDP
  A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…
  ☆396Updated 2 years ago
• Idov31 / MrKaplan
  MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
  ☆270Updated 2 years ago
• S12cybersecurity / RDPCredentialStealer
  RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
  ☆257Updated 2 years ago
• nickvourd / COM-Hunter
  COM Hijacking VOODOO
  ☆368Updated last month
• senzee1984 / micr0_shell
  micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.
  ☆206Updated last year
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆213Updated last year
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆392Updated last year
• Wra7h / SingleDose
  Generate Shellcode Loaders & Injects
  ☆158Updated 2 years ago
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆177Updated 3 years ago
• reveng007 / SharpGmailC2
  Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol
  ☆266Updated 3 months ago
• icyguider / LatLoader
  PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
  ☆309Updated 2 years ago
• N1k0la-T / CVE-2023-36745
  ☆168Updated 2 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆337Updated last year