PolyEngine is an evasive PE packer designed for CTF challenges and low-level Windows security education. It focuses on bypassing EDR and AV heuristics through a layered stack of in-memory execution and obfuscation techniques.
☆137May 29, 2026Updated last week
Alternatives and similar repositories for PolyEngine
Users that are interested in PolyEngine are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆34Dec 31, 2025Updated 5 months ago
- open source port/reimplementation of the Cobalt Strike BOF Loader as is☆72Mar 8, 2026Updated 3 months ago
- Cortex EDR Ransomware protection Bypass☆27Feb 8, 2025Updated last year
- A practical client for ADWS in Golang.☆54Mar 3, 2026Updated 3 months ago
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆160Apr 15, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆86Jan 26, 2026Updated 4 months ago
- A Windows tool that converts LDIF files to BloodHound CE☆32Dec 20, 2025Updated 5 months ago
- AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)☆285Jan 21, 2026Updated 4 months ago
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287☆46Oct 28, 2025Updated 7 months ago
- Network Fuzzing Framework☆64Jan 17, 2026Updated 4 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆60Apr 10, 2026Updated last month
- Living of the Land of Free SaaS☆76Mar 22, 2026Updated 2 months ago
- rShellZ s a linux reverse-shell & exploitation assistance framework. With lots of payload and post exploitation modules.☆13Dec 13, 2023Updated 2 years ago
- UDC2 implementation that provides an ICMP C2 channel☆123Nov 24, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Advanced Windows authentication token extraction and decryption tool for red team operations and security research☆96Apr 1, 2026Updated 2 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirection☆50Aug 30, 2023Updated 2 years ago
- modified mssqlclient from impacket to extract policies from the SCCM database☆47Feb 24, 2026Updated 3 months ago
- Atomic test units for BOF execution☆57Apr 26, 2026Updated last month
- template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.☆103Jan 10, 2026Updated 4 months ago
- An modular asset discovery framework written in python to automate the repeating manual work☆68May 30, 2026Updated last week
- Misery Loader to bypass modern EDR solutions☆19Dec 20, 2024Updated last year
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆42Aug 5, 2025Updated 10 months ago
- IronPE is a Windows PE manual loader written in Rust for both x86 and x64 PE files.☆122Mar 10, 2026Updated 2 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Static analysis & exploitation-triage toolkit for Windows kernel drivers. Discover IOCTLs, Symbolic Links, and check cert , and Downlaods…☆182Apr 27, 2026Updated last month
- Enumerate active EDR's on the system☆153Sep 23, 2025Updated 8 months ago
- A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for…☆209May 22, 2026Updated 2 weeks ago
- Dump Kerberos tickets☆46Aug 4, 2025Updated 10 months ago
- A beginner-friendly collection of Rust notes focused on Red Team Tooling • Malware Development • Systems Programming • Rust Fundamentals☆61Nov 24, 2025Updated 6 months ago
- A lightweight Windows Prefetch file parser to extract programs' execution history☆69Jan 12, 2026Updated 4 months ago
- A modern GoPhish fork with improved tracking accuracy and smarter detection.☆93Feb 16, 2026Updated 3 months ago
- ☆50Dec 5, 2025Updated 6 months ago
- Ansible roles to deploy RedELK☆23Feb 15, 2023Updated 3 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- ☆29Oct 15, 2025Updated 7 months ago
- A stealthier approach to WMI-based command execution using Impacket without touching the disk.☆83Mar 15, 2026Updated 2 months ago
- Aliasr is a modern, feature-rich TUI launcher for pentest commands.☆112Apr 23, 2026Updated last month
- Brute Ratel External C2 (Microsoft Teams)☆37Dec 11, 2024Updated last year
- CVE-2025-59501 POC code☆26Nov 20, 2025Updated 6 months ago
- Red Team Assessment Platform - reporting, visualizations, and analytics for cybersecurity red teams☆34Apr 13, 2026Updated last month
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆19Mar 19, 2025Updated last year