Alternatives and similar repositories for Recursive-Loader:

Users that are interested in Recursive-Loader are comparing it to the libraries listed below

• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆151Updated 3 weeks ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆199Updated last month
• Octoberfest7 / enumhandles_BOF
  ☆121Updated 4 months ago
• ColeHouston / Sunder
  Windows rootkit designed to work with BYOVD exploits
  ☆110Updated this week
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆73Updated 5 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆136Updated last month
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆147Updated last month
• ZERODETECTION / MSC_Dropper
  ☆136Updated 5 months ago
• securifybv / BOFRyptor
  ☆120Updated last year
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆157Updated last month
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆130Updated 7 months ago
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆153Updated 3 months ago
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆101Updated 3 weeks ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆61Updated 6 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆69Updated 3 weeks ago
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆105Updated last month
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆68Updated 5 months ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆111Updated last month
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆64Updated last week
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆45Updated 10 months ago
• OtterHacker / Hooker
  ☆102Updated 2 months ago
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆88Updated 10 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆82Updated 8 months ago
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆122Updated 5 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆167Updated last week
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆112Updated 3 months ago
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆160Updated last month
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆215Updated 4 months ago
• ricardojoserf / NativeBypassCredGuard
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆212Updated last month