Alternatives and similar repositories for Nyx-Full-Dll-Unhook

Users that are interested in Nyx-Full-Dll-Unhook are comparing it to the libraries listed below

• EvilBytecode / Evilbytecode-Shellcode-Go-Tactics
  A mutliple tactics to execute shellcode in go :}
  ☆21Updated 3 months ago
• ChoiSG / SharpSilentChrome
  SharpSilentChrome is a C# project that "silently" installs browser extensions on Google Chrome or MS Edge by updating the browsers' Prefe…
  ☆139Updated this week
• Ethicalrat / Evasive-Loader
  Evasive loader to bypass static detection
  ☆58Updated last year
• ryanq47 / CS-EXTC2-ICMP
  An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.
  ☆95Updated last month
• kyxiaxiang / Safetasklist
  Help red teams find opsec processes during engagements
  ☆42Updated 8 months ago
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆51Updated last year
• BambiZombie / ThreadlessSpawn
  A Simple PoC
  ☆21Updated last year
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆48Updated last year
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆85Updated 2 years ago
• aleenzz / ChromeExtensionInstall
  Silently Install Chrome Extension For Persistence
  ☆91Updated last year
• Hagrid29 / BOF-DCOMPotato-PrintNotify
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆51Updated 2 years ago
• wabzsy / gonut
  Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
  ☆59Updated 2 years ago
• fern89 / C2
  A basic C2 framework written in C
  ☆60Updated last year
• iss4cf0ng / DuplexSpyCS
  A Remote Access Tool developed in C#, enabling complete control of a remote Windows machine, designed for legitimate remote administratio…
  ☆50Updated 2 weeks ago
• florylsk / NtDump
  Indirect NT syscalls LSASS dumper.
  ☆46Updated 2 years ago
• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆40Updated 2 months ago
• almounah / GoDroplets
  Go Shellcode Loader to be Integrated in Exploration C2
  ☆27Updated 6 months ago
• maxDcb / C2Core
  Core Submodule of Exploration C2
  ☆19Updated last week
• b1-team / phantom
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆17Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆99Updated 2 years ago
• Ridter / netsync
  Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.
  ☆58Updated 5 months ago
• oldboy21 / SyscallMeMaybe
  Implementation of Indirect Syscall technique to pop a calc.exe
  ☆105Updated last year
• EspressoCake / Defender-Exclusions-Creator-BOF
  ☆81Updated last year
• b4nbird / shellcode_entropy_less
  replace the shellcode chatacters so that reduce the entropy
  ☆17Updated last year
• dreamkinn / go-ThreadlessInject
  Golang implementation of @CCob's C# ThreadlessInject
  ☆32Updated last year
• dk0m / ZeroCrumb
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆59Updated 2 months ago
• l0n3m4n / bin2shell
  Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)
  ☆15Updated 2 months ago
• andrecrafts / CobaltStrike-YARA-Bypass-f0b627fc
  Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellco…
  ☆41Updated 9 months ago
• qwqdanchun / ScreenShot-BOF
  ☆42Updated 2 years ago
• dis0rder0x00 / ParentProcessManipulation-LNK
  Using LNK files and user input simulation to start processes under explorer.exe
  ☆25Updated 10 months ago