Alternatives and similar repositories for PyinMemoryPE

Users that are interested in PyinMemoryPE are comparing it to the libraries listed below

• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆91Updated 9 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆46Updated last year
• brosck / L1LKiller
  「⚠️」Performing a BYOVD on the truesight.sys driver
  ☆44Updated last year
• 0xNinjaCyclone / PowerLoad3r
  Malicious powershell scripts loader designed to avoid detection.
  ☆61Updated 2 years ago
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆56Updated 3 weeks ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆65Updated last year
• mochabyte0x / CTFPacker
  Cross platform (Linux / Windows) shellcode packer for CTFs and pentest / red team exams aiming for AV evasion !
  ☆106Updated 2 months ago
• p4p1 / havoc-ligolo
  A Havoc UI tool to pivot onto a machine using ligolo-ng
  ☆50Updated 2 years ago
• hdks-bug / hermit
  A command and control framework.
  ☆54Updated last year
• 0xb11a1 / sliver_extension_uac_bypass_cmstp
  Sliver extension to bypass UAC via cmstp written in rust
  ☆35Updated last year
• S12cybersecurity / NtUnhook
  Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll
  ☆25Updated 6 months ago
• rubenformation / ms-photos_NTLM_Leak
  New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click
  ☆206Updated 2 months ago
• Maldev-Academy / GitHubDeviceCodePhishing
  A tool to easily perform GitHub Device Code Phishing on red team engagements
  ☆79Updated 2 months ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated 2 years ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆39Updated last year
• 0xNinjaCyclone / AsmLdr
  Dynamic shellcode loader with sophisticated evasion capabilities
  ☆282Updated 4 months ago
• The-Viper-One / Invoke-PowerChrome
  Decrypt Chromium based browser passwords with PowerShell.
  ☆134Updated 2 months ago
• nocerainfosec / TakeMyRDP2.0
  An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…
  ☆105Updated 2 years ago
• moscowchill / LSTAR-EN
  LSTAR - CobaltStrike Translated to EN
  ☆22Updated 2 years ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆155Updated last year
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆128Updated 11 months ago
• almounah / go-buena-clr
  Good CLR Host with Native patchless AMSI Bypass
  ☆101Updated 9 months ago
• S3cur3Th1sSh1t / My-starred-Repositories
  This is my starred repositories including the description for each tool. Makes search/filter over them easier.
  ☆61Updated 11 months ago
• inb1ts / CSSHide
  Encodes a payload within a generated mock-CSS file
  ☆59Updated 2 years ago
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆119Updated 6 months ago
• Im10n / CVE-2024-3183-POC
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆27Updated last year
• Maldev-Academy / AlphabeticalPolyShellGen
  Generate an Alphabetical Polymorphic Shellcode
  ☆135Updated 5 months ago
• DevBuiHieu / CVE-2025-33053-Proof-Of-Concept
  CVE-2025-33053 Proof Of Concept (PoC)
  ☆64Updated 7 months ago
• synacktiv / CVE-2024-43468
  ☆94Updated last year
• h0ru / AMSI-Reaper
  ☆106Updated last year