Alternatives and similar repositories for ElfDoor-gcc

Users that are interested in ElfDoor-gcc are comparing it to the libraries listed below

• OtterHacker / Hooker
  ☆107Updated 8 months ago
• eversinc33 / 1.6-C2
  Using the Counter Strike 1.6 RCON protocol as a C2 Channel.
  ☆81Updated 4 months ago
• deepinstinct / ShimMe
  ☆143Updated 8 months ago
• ColeHouston / Sunder
  Windows rootkit designed to work with BYOVD exploits
  ☆200Updated 6 months ago
• NVISOsecurity / codasm
  Payload encoding utility to effectively lower payload entropy.
  ☆119Updated 3 months ago
• rad9800 / talks
  ☆57Updated 2 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆37Updated 2 weeks ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆90Updated last year
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆155Updated 7 months ago
• Maldev-Academy / CodeSearchDemo
  ☆40Updated last year
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆129Updated 3 weeks ago
• synacktiv / keebcap
  Win32 keylogger that supports all (non-ime using) languages correctly
  ☆50Updated last year
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 5 months ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated 11 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆229Updated 7 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆111Updated 6 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆59Updated 10 months ago
• mephistolist / tito
  In-Memory Rootkit For Linux
  ☆71Updated last month
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆63Updated last year
• MatheuZSecurity / RingReaper
  Linux post-exploitation agent that uses io_uring to stealthily bypass EDR detection by avoiding traditional syscalls.
  ☆73Updated last week
• flostyen / windows-persistence
  Windows Persistence IT-Security
  ☆102Updated 4 months ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆88Updated last month
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆130Updated 11 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆165Updated last year
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆94Updated 3 weeks ago
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆116Updated 7 months ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆72Updated last week
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆61Updated 6 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆192Updated 5 months ago