execute PE in memory Filelessly
β52Feb 8, 2025Updated last year
Alternatives and similar repositories for PyinMemoryPE
Users that are interested in PyinMemoryPE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Payload Dropper with Persistance & Privesc & UAC bypass π±βπ€β15Apr 8, 2024Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.β21Nov 13, 2025Updated 6 months ago
- β25Nov 7, 2023Updated 2 years ago
- web based c2 π΄ββ οΈβ16Aug 10, 2024Updated last year
- Simple .NET loader for loading and executing Powershell payloadsβ16Nov 5, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A tool to assist DLL hijacking via the Havoc GUIβ14Jan 9, 2024Updated 2 years ago
- AI web vulneraribilty scanner π€β21Feb 22, 2024Updated 2 years ago
- Take control of a remote machine using reverse shells in python(The hacking side of python)β10May 23, 2023Updated 3 years ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASSβ331Sep 30, 2025Updated 8 months ago
- Bypassing Amsi using LdrLoadDllβ48Jan 8, 2025Updated last year
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287β46Oct 28, 2025Updated 7 months ago
- PowerShell script to generate ShellCode in various formatsβ46Sep 25, 2024Updated last year
- This Python script provides functionality to encode PowerShell commands while preserving the environment variables. It's especially usefuβ¦β16May 6, 2024Updated 2 years ago
- A solution to create obfuscated reverse shells for PowerShell.β83Aug 1, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off β’ AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.β293May 27, 2024Updated 2 years ago
- Shellcode Loader using indirect syscallsβ16Jan 21, 2024Updated 2 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls executionβ51Apr 22, 2024Updated 2 years ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the cloneβ¦β217Oct 19, 2024Updated last year
- Process injection via KernelCallbackTableβ13Jan 28, 2022Updated 4 years ago
- .bin file to shellcode convertorβ39Jul 5, 2024Updated last year
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysisβ99Sep 14, 2024Updated last year
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will autoβ¦β15Apr 2, 2026Updated 2 months ago
- Terminate AV/EDR leveraging BYOVD attackβ104Mar 21, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting β’ AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Persistent Powershell backdoor tool {π}β123Jul 31, 2024Updated last year
- β11Dec 8, 2023Updated 2 years ago
- PE to shellcodeβ281Jan 1, 2025Updated last year
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exeβ13Dec 11, 2023Updated 2 years ago
- GENERATE PYTHON BASED FUD STUBβ20Nov 20, 2023Updated 2 years ago
- Discord C2 Profile for Mythicβ34Feb 18, 2025Updated last year
- TypeLib persistence techniqueβ146Oct 22, 2024Updated last year
- This tool generates an undetectable Windows reverse shell PowerShell script. Users can configure IP and Port according to their requiremeβ¦β20Jul 16, 2024Updated last year
- Groovy Post Exploitationβ20Oct 21, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Injecting DLL into LSASS at bootβ156Apr 29, 2025Updated last year
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch buildsβ23May 15, 2024Updated 2 years ago
- A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MANβ138Jan 26, 2026Updated 4 months ago
- β57Jul 8, 2025Updated 11 months ago
- This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerShβ¦β16Jun 2, 2024Updated 2 years ago
- A PowerShell script that simplifies life and therefore... phishing.β19Aug 16, 2022Updated 3 years ago
- Impacket is a collection of Python classes for working with network protocols.β31Jun 27, 2024Updated last year