JohnWoodman/stealthInjector external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

JohnWoodman/stealthInjector

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/JohnWoodman/stealthInjector)

Close

JohnWoodman / stealthInjectorView on GitHubMore

• External links
• Readme badge

Injects shellcode into remote processes using direct syscalls

☆76Dec 30, 2020Updated 5 years ago

Alternatives and similar repositories for stealthInjector

Users that are interested in stealthInjector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• IonizeCbr / AmsiPatchDetection

  View on GitHub
  ☆21Jan 28, 2020Updated 6 years ago
• aaaddress1 / xlsKami

  View on GitHub
  Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets
  ☆48Aug 4, 2021Updated 4 years ago
• mobdk / Sigma

  View on GitHub
  Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx
  ☆15Apr 26, 2021Updated 5 years ago
• rsmudge / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆284Sep 18, 2021Updated 4 years ago
• Aetsu / SLib

  View on GitHub
  SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#
  ☆66Aug 29, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ChoiSG / UuidShellcodeExec

  View on GitHub
  PoC for UUID shellcode execution using DInvoke
  ☆156Mar 8, 2021Updated 5 years ago
• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass

  View on GitHub
  AmsiScanBufferBypass using D/Invoke
  ☆136Jun 17, 2021Updated 4 years ago
• khchen / memlib

  View on GitHub
  Load Windows DLL from memory
  ☆134Mar 28, 2023Updated 3 years ago
• STMCyber / boobsnail

  View on GitHub
  BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.
  ☆257Mar 6, 2025Updated last year
• moloch-- / DarkLoadLibrary

  View on GitHub
  LoadLibrary for offensive operations
  ☆33Dec 14, 2021Updated 4 years ago
• fashionproof / CheckSafeBoot

  View on GitHub
  I used this to see if an EDR is running in Safe Mode
  ☆36Feb 13, 2021Updated 5 years ago
• bats3c / DefensiveInjector

  View on GitHub
  Shellcode injector using direct syscalls
  ☆123Aug 17, 2020Updated 5 years ago
• Barbarisch / forkatz

  View on GitHub
  credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege
  ☆123May 22, 2021Updated 5 years ago
• TomOS3 / UserModeUnhooking

  View on GitHub
  This project is created for research into antivirus evasion by unhooking.
  ☆18Sep 2, 2021Updated 4 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• hack2fun / EventLogBypass

  View on GitHub
  Terminate the eventlog thread to disable the windows eventlog
  ☆21Apr 1, 2020Updated 6 years ago
• ch3rn0byl / HookedRDP

  View on GitHub
  ☆51Dec 11, 2019Updated 6 years ago
• SolomonSklash / SleepyCrypt

  View on GitHub
  A shellcode function to encrypt a running process image when sleeping.
  ☆340Sep 11, 2021Updated 4 years ago
• BinaryScary / NET-Obfuscate

  View on GitHub
  Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
  ☆240Jun 9, 2023Updated 2 years ago
• OG-Sadpanda / SharpSword

  View on GitHub
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆118Sep 30, 2024Updated last year
• checkymander / Carbuncle

  View on GitHub
  Tool for interacting with outlook interop during red team engagements
  ☆147Jun 29, 2021Updated 4 years ago
• bigb0sss / Bankai

  View on GitHub
  Another Go Shellcode Loader using Windows APIs
  ☆140Nov 4, 2021Updated 4 years ago
• Cobalt-Strike / beacon_health_check

  View on GitHub
  This aggressor script uses a beacon's note field to indicate the health status of a beacon.
  ☆143Sep 29, 2021Updated 4 years ago
• klezVirus / CandyPotato

  View on GitHub
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆314Sep 16, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• panagioto / SyscallHide

  View on GitHub
  Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.
  ☆79Feb 27, 2020Updated 6 years ago
• optiv / Dent

  View on GitHub
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆298Aug 18, 2023Updated 2 years ago
• RedSection / OffensivePH

  View on GitHub
  OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
  ☆333Oct 9, 2021Updated 4 years ago
• Apr4h / GetInjectedThreads

  View on GitHub
  C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
  ☆55Jul 11, 2021Updated 4 years ago
• rvrsh3ll / RuralBishop

  View on GitHub
  D/Invoke port of UrbanBishop
  ☆30Dec 13, 2020Updated 5 years ago
• rookuu / BOFs

  View on GitHub
  Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.
  ☆188Feb 11, 2021Updated 5 years ago
• Paulo-D2000 / ShellCodeObfuscator

  View on GitHub
  Simple shellcode obfuscator using PYTHON and C / C++
  ☆74Jun 17, 2020Updated 5 years ago
• bufferbandit / silent_cleanup_uac_bypass

  View on GitHub
  Silent Cleanup UAC Bypass POC
  ☆11Dec 15, 2019Updated 6 years ago
• Moriarty2016 / NimRDI

  View on GitHub
  RDI implementation in Nim
  ☆64Dec 12, 2020Updated 5 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• rxwx / cs-rdll-ipc-example

  View on GitHub
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆121Jun 24, 2020Updated 5 years ago
• joshfaust / Simple-Loader

  View on GitHub
  Windows Defender ShellCode Execution Bypass
  ☆129Dec 2, 2019Updated 6 years ago
• G0ldenGunSec / SharpTransactedLoad

  View on GitHub
  Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
  ☆173May 5, 2021Updated 5 years ago
• pwn1sher / CS-BOFs

  View on GitHub
  Collection of CobaltStrike beacon object files
  ☆105Feb 14, 2022Updated 4 years ago
• immunIT / TeamsUserEnum

  View on GitHub
  User enumeration with Microsoft Teams API
  ☆174Jul 9, 2021Updated 4 years ago
• tomcarver16 / AmsiHook

  View on GitHub
  AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.
  ☆68Jun 14, 2020Updated 5 years ago
• tomcarver16 / BOF-DLL-Inject

  View on GitHub
  Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
  ☆152Sep 3, 2020Updated 5 years ago