EvilBytecode / Shellcode-LoaderLinks
This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
☆72Updated 2 months ago
Alternatives and similar repositories for Shellcode-Loader
Users that are interested in Shellcode-Loader are comparing it to the libraries listed below
Sorting:
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆111Updated 6 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 3 months ago
- Construct the payload at runtime using an array of offsets☆63Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆129Updated 3 weeks ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆92Updated 2 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆97Updated last year
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆168Updated 4 months ago
- Command and Control (C2) framework☆126Updated 2 months ago
- Chrome browser extension-based Command & Control☆152Updated 2 weeks ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆44Updated 2 months ago
- 「💀」Proof of concept on BYOVD attack☆161Updated 7 months ago
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆38Updated 7 months ago
- .bin file to shellcode convertor☆38Updated last year
- Adversary Emulation Framework☆119Updated 2 weeks ago
- PowerShell script to generate ShellCode in various formats☆41Updated 9 months ago
- A Mythic agent for Windows written in C☆129Updated 2 weeks ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆77Updated 4 months ago
- Automated .NET AppDomain hijack payload generation☆126Updated 5 months ago
- .NET assembly loader with patchless AMSI and ETW bypass in Rust☆50Updated 9 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆75Updated 11 months ago
- Create Anti-Copy DRM Malware☆59Updated 10 months ago
- ☆182Updated 11 months ago
- Stage 0☆161Updated 6 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year
- Windows Thread Pool Injection Havoc Implementation☆30Updated last year
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆63Updated last year
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆50Updated last year
- ☆132Updated 5 months ago