Alternatives and similar repositories for EmbedPayloadInPng

Users that are interested in EmbedPayloadInPng are comparing it to the libraries listed below

• S3N4T0R-0X0 / BEAR
  Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…
  ☆397Updated last week
• murat-exp / EDR-Antivirus-Bypass-to-Gain-Shell-Access
  EDR & Antivirus Bypass to Gain Shell Access
  ☆243Updated 8 months ago
• Maldev-Academy / ExecutePeFromPngViaLNK
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆422Updated 7 months ago
• 0x6rss / CVE-2025-24071_PoC
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆308Updated 3 months ago
• WafflesExploits / hide-payload-in-images
  A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Paylo…
  ☆175Updated 3 months ago
• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆378Updated last year
• 0x6rss / pdfdropper
  PDF dropper Red Team Scenairos
  ☆211Updated 10 months ago
• dhmosfunk / 7-Zip-CVE-2025-0411-POC
  This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.
  ☆135Updated 3 months ago
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆285Updated 2 months ago
• Maldev-Academy / MaldevAcademyLdr.1
  ☆354Updated last year
• decoder-it / KrbRelayEx
  ☆322Updated 2 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆193Updated 3 months ago
• vxCrypt0r / Voidgate
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆523Updated last year
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆267Updated 8 months ago
• Offensive-Panda / ProcessInjectionTechniques
  This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…
  ☆382Updated last month
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆524Updated 2 months ago
• CICADA8-Research / RemoteKrbRelay
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆597Updated last month
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆291Updated last year
• An0nUD4Y / AV-EDR-Lab-Environment-Setup
  AV/EDR Lab environment setup references to help in Malware development
  ☆388Updated 4 months ago
• Helixo32 / CrimsonEDR
  Simulate the behavior of AV/EDR for malware development training.
  ☆530Updated last year
• duy-31 / CVE-2024-21413
  Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
  ☆154Updated last year
• Offensive-Panda / ShadowDumper
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆545Updated last month
• d456h / IconJector
  Unorthodox and stealthy way to inject a DLL into the explorer using icons
  ☆320Updated last month
• Azr43lKn1ght / Rusty-PE-Packer
  ☆7Updated 5 months ago
• hackerschoice / bincrypter
  Pack/Encrypt/Obfuscate ELF + SHELL scripts
  ☆315Updated 3 weeks ago
• OtterHacker / Conferences
  ☆303Updated 7 months ago
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆425Updated 10 months ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆361Updated last year
• MrAle98 / CVE-2024-49138-POC
  POC exploit for CVE-2024-49138
  ☆249Updated 4 months ago
• senzee1984 / EDRPrison
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆417Updated 10 months ago