Alternatives and similar repositories for Alphabetfuscation

Users that are interested in Alphabetfuscation are comparing it to the libraries listed below

• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆152Updated 5 months ago
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆88Updated 9 months ago
• 0xJs / EnumEDRs
  Enumerate active EDR's on the system
  ☆148Updated 3 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆123Updated last week
• Maldev-Academy / ElectronVulnScanner
  Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.
  ☆144Updated last month
• dmcxblue / WSL-Payloads
  A small How-To on creating your own weaponized WSL file
  ☆118Updated 5 months ago
• NtDallas / Svartalfheim
  Stage 0
  ☆168Updated last year
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 9 months ago
• Thunter-HackTeam / EvilentCoerce
  ☆151Updated 7 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 5 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆149Updated last year
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆101Updated 6 months ago
• TwoSevenOneT / EDR-Redir
  EDR-Redir : a tool used to redirect the EDR's folder to another location.
  ☆210Updated last month
• dmcxblue / Claude-C2
  Utilizng an MCP Server to communicate with your C2
  ☆86Updated 7 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆128Updated 5 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆163Updated 4 months ago
• EvilWhales / nightshade
  ☆35Updated 5 months ago
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆120Updated 6 months ago
• S3N4T0R-0X0 / Hunter
  Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…
  ☆90Updated 8 months ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated last year
• hdks-bug / redteam-techniques
  Collection of red team techniques.
  ☆64Updated 8 months ago
• whokilleddb / hoontr
  A hoontr must hoont
  ☆102Updated last month
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆123Updated last year
• Network-Sec / CVE-2025-21420-PoC
  We found a way to DLL sideload with cleanmgr.exe
  ☆95Updated 10 months ago
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆136Updated 4 months ago
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Updated 5 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆92Updated last year
• ricardojoserf / NativeTokenImpersonate
  Impersonate Tokens using only NTAPI functions
  ☆83Updated 8 months ago
• m8sec / Dispatch
  Evasive Payload Delivery Server & C2 Redirector
  ☆112Updated last month
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆162Updated last month