Alternatives and similar repositories for HollowGhost:

Users that are interested in HollowGhost are comparing it to the libraries listed below

• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆53Updated 6 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆73Updated 5 months ago
• ZERODETECTION / MSC_Dropper
  ☆137Updated 6 months ago
• Ghost53574 / havoc_profile_generator
  Havoc C2 profile generator
  ☆68Updated 3 months ago
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆23Updated last year
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆131Updated 8 months ago
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆89Updated 10 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆77Updated last month
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆149Updated last year
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆152Updated 8 months ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆154Updated last month
• Ximoxkil547 / undetectableRevShell
  This repo is for the youtube video where we have explained how to make a detectable reverse shell undetectable by windows defender
  ☆26Updated 10 months ago
• naksyn / DojoLoader
  Generic PE loader for fast prototyping evasion techniques
  ☆191Updated 6 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated 11 months ago
• blue0x1 / uac-bypass-oneliners
  Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applicatio…
  ☆98Updated 3 weeks ago
• dagowda / DSViper
  This is for Ethical Use only!
  ☆20Updated 2 weeks ago
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆137Updated this week
• MzHmO / DebugAmsi
  DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
  ☆96Updated last year
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆39Updated 8 months ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆46Updated 8 months ago
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆103Updated this week
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆66Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆28Updated 10 months ago
• ZeroMemoryEx / IObit-EoP
  (0day) Local Privilege Escalation in IObit Malware Fighter
  ☆110Updated 3 weeks ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆31Updated 6 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆206Updated last month
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆84Updated 8 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆61Updated 7 months ago
• 0xNinjaCyclone / PowerLoad3r
  Malicious powershell scripts loader designed to avoid detection.
  ☆38Updated last year
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 2 months ago