execute PE in memory Filelessly
β52Feb 8, 2025Updated last year
Alternatives and similar repositories for PyinMemoryPE
Users that are interested in PyinMemoryPE are comparing it to the libraries listed below
Sorting:
- Payload Dropper with Persistance & Privesc & UAC bypass π±βπ€β14Apr 8, 2024Updated last year
- Impacket is a collection of Python classes for working with network protocols.β20Nov 13, 2025Updated 4 months ago
- β26Nov 7, 2023Updated 2 years ago
- web based c2 π΄ββ οΈβ15Aug 10, 2024Updated last year
- Simple .NET loader for loading and executing Powershell payloadsβ17Nov 5, 2021Updated 4 years ago
- A tool to assist DLL hijacking via the Havoc GUIβ13Jan 9, 2024Updated 2 years ago
- AI web vulneraribilty scanner π€β20Feb 22, 2024Updated 2 years ago
- Take control of a remote machine using reverse shells in python(The hacking side of python)β10May 23, 2023Updated 2 years ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASSβ316Sep 30, 2025Updated 5 months ago
- Bypassing Amsi using LdrLoadDllβ47Jan 8, 2025Updated last year
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287β46Oct 28, 2025Updated 4 months ago
- PowerShell script to generate ShellCode in various formatsβ45Sep 25, 2024Updated last year
- This Python script provides functionality to encode PowerShell commands while preserving the environment variables. It's especially usefuβ¦β16May 6, 2024Updated last year
- A solution to create obfuscated reverse shells for PowerShell.β83Aug 1, 2022Updated 3 years ago
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.β290May 27, 2024Updated last year
- Shellcode Loader using indirect syscallsβ16Jan 21, 2024Updated 2 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls executionβ51Apr 22, 2024Updated last year
- GENERATE PYTHON BASED FUD STUBβ19Nov 20, 2023Updated 2 years ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the cloneβ¦β216Oct 19, 2024Updated last year
- Process injection via KernelCallbackTableβ13Jan 28, 2022Updated 4 years ago
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysisβ88Sep 14, 2024Updated last year
- .bin file to shellcode convertorβ39Jul 5, 2024Updated last year
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will autoβ¦β14Jul 16, 2025Updated 8 months ago
- Python 3 Reverse Shellβ17Oct 16, 2019Updated 6 years ago
- Terminate AV/EDR leveraging BYOVD attackβ103Mar 21, 2025Updated last year
- Persistent Powershell backdoor tool {π}β120Jul 31, 2024Updated last year
- PE to shellcodeβ270Jan 1, 2025Updated last year
- β11Dec 8, 2023Updated 2 years ago
- A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MANβ107Jan 26, 2026Updated last month
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exeβ13Dec 11, 2023Updated 2 years ago
- β53Jul 8, 2025Updated 8 months ago
- Discord C2 Profile for Mythicβ32Feb 18, 2025Updated last year
- TypeLib persistence techniqueβ141Oct 22, 2024Updated last year
- This tool generates an undetectable Windows reverse shell PowerShell script. Users can configure IP and Port according to their requiremeβ¦β20Jul 16, 2024Updated last year
- Groovy Post Exploitationβ20Oct 21, 2024Updated last year
- Injecting DLL into LSASS at bootβ156Apr 29, 2025Updated 10 months ago
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch buildsβ23May 15, 2024Updated last year
- A PowerShell script that simplifies life and therefore... phishing.β20Aug 16, 2022Updated 3 years ago
- This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerShβ¦β14Jun 2, 2024Updated last year