Alternatives and similar repositories for PyinMemoryPE

Users that are interested in PyinMemoryPE are comparing it to the libraries listed below

• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆89Updated 7 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆46Updated last year
• brosck / L1LKiller
  「⚠️」Performing a BYOVD on the truesight.sys driver
  ☆44Updated last year
• mochabyte0x / CTFPacker
  Cross platform (Linux / Windows) shellcode packer for CTFs and pentest / red team exams aiming for AV evasion !
  ☆96Updated 2 weeks ago
• 0xNinjaCyclone / PowerLoad3r
  Malicious powershell scripts loader designed to avoid detection.
  ☆59Updated 2 years ago
• rubenformation / ms-photos_NTLM_Leak
  New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click
  ☆116Updated last month
• p4p1 / havoc-ligolo
  A Havoc UI tool to pivot onto a machine using ligolo-ng
  ☆50Updated last year
• DevBuiHieu / CVE-2025-33053-Proof-Of-Concept
  CVE-2025-33053 Proof Of Concept (PoC)
  ☆62Updated 6 months ago
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆120Updated 5 months ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆65Updated 10 months ago
• S3N4T0R-0X0 / Malicious-PixelCode
  Malicious PixelCode is a security research project that demonstrates a covert technique for encoding executable files into pixel data and…
  ☆89Updated 3 weeks ago
• 0xNinjaCyclone / AsmLdr
  Dynamic shellcode loader with sophisticated evasion capabilities
  ☆269Updated 2 months ago
• tylerdotrar / PoorMansArmory
  Collection of malleable payloads and tools that will bypass AMSI, Windows Defender, and self-signed certificate checks.
  ☆37Updated 8 months ago
• Maldev-Academy / AlphabeticalPolyShellGen
  Generate an Alphabetical Polymorphic Shellcode
  ☆133Updated 3 months ago
• S12cybersecurity / NtUnhook
  Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll
  ☆21Updated 5 months ago
• nocerainfosec / TakeMyRDP2.0
  An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…
  ☆105Updated 2 years ago
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 2 weeks ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆203Updated 9 months ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆39Updated last year
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆127Updated 10 months ago
• zflemingg1 / AM0N-Eye
  ☆24Updated last year
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated last year
• hdks-bug / hermit
  A command and control framework.
  ☆55Updated 11 months ago
• lsecqt / BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero
  ☆43Updated last year
• The-Viper-One / Invoke-PowerChrome
  Decrypt Chromium based browser passwords with PowerShell.
  ☆128Updated last month
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆99Updated last year
• moscowchill / LSTAR-EN
  LSTAR - CobaltStrike Translated to EN
  ☆22Updated 2 years ago
• rubenformation / CVE-2025-50154
  POCs for CVE-2025-50154 and CVE-2025-59214, zero day vulnerabilities on windows file explorer disclosing NTLMv2-SSP without user interact…
  ☆45Updated 2 months ago
• tehstoni / LexiCrypt
  Shellcode encryptor using a substitution cipher with a randomly generated key.
  ☆142Updated 11 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆99Updated 7 months ago