Alternatives and similar repositories for ef

Users that are interested in ef are comparing it to the libraries listed below

• Kudaes / rust_tips_and_tricks
  Rust For Windows Cheatsheet
  ☆119Updated 6 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆210Updated 3 months ago
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆261Updated 7 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆98Updated 9 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Updated last year
• BlackSnufkin / NovaLdr
  Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
  ☆243Updated 10 months ago
• Kudaes / ADPT
  DLL proxying for lazy people
  ☆158Updated 5 months ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆139Updated last month
• BlackSnufkin / Rusty-Playground
  Some Rust program I wrote while learning Malware Development
  ☆132Updated 3 months ago
• nettitude / Tartarus-TpAllocInject
  ☆184Updated last year
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆187Updated 5 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆158Updated 2 months ago
• Kudaes / Fiber
  Using fibers to run in-memory code.
  ☆206Updated last year
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆95Updated last year
• Tylous / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆79Updated 2 years ago
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆120Updated 11 months ago
• boku7 / patchwerk
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆179Updated 3 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆90Updated 10 months ago
• naksyn / ModuleShifting
  Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…
  ☆116Updated last year
• g0h4n / REC2
  REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…
  ☆153Updated last year
• Kudaes / Bin-Finder
  Detect EDR's exceptions by inspecting processes' loaded modules
  ☆129Updated last year
• ZERODETECTION / MSC_Dropper
  ☆154Updated 9 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆189Updated 3 months ago
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆115Updated last year
• rbmm / SC_DEMO
  ☆114Updated 2 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆88Updated 2 weeks ago
• WKL-Sec / dcomhijack
  Lateral Movement Using DCOM and DLL Hijacking
  ☆291Updated last year
• paranoidninja / BRC4-BOF-Artillery
  ☆106Updated last month
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆125Updated 2 weeks ago