transform your payload into ipv4/ipv6/mac arrays
☆257Aug 18, 2022Updated 3 years ago
Alternatives and similar repositories for HellShell
Users that are interested in HellShell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Performing Indirect Clean Syscalls☆612May 2, 2026Updated 3 weeks ago
- using the gpu to hide your payload☆64Aug 15, 2022Updated 3 years ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆449Dec 21, 2023Updated 2 years ago
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.☆1,638Jul 31, 2024Updated last year
- TartarusGate, Bypassing EDRs☆663Jan 25, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Real fucking shellcode encryptor & obfuscator tool☆1,027Jan 7, 2026Updated 4 months ago
- Sleep Obfuscation☆836Dec 3, 2023Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks☆1,722Nov 11, 2022Updated 3 years ago
- Cobalt Strike UDRL for memory scanner evasion.☆1,016Jun 4, 2024Updated last year
- Beacon Object File Loader☆294Dec 3, 2023Updated 2 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,151Jun 10, 2024Updated last year
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,411Nov 22, 2023Updated 2 years ago
- Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…☆1,075Oct 14, 2025Updated 7 months ago
- AV/EDR evasion via direct system calls.☆1,810Sep 3, 2022Updated 3 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- PoC Implementation of a fully dynamic call stack spoofer☆958Jul 20, 2024Updated last year
- Creating a repository with all public Beacon Object Files (BoFs)☆639Mar 2, 2026Updated 2 months ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,638Jul 10, 2023Updated 2 years ago
- HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.☆726Jul 19, 2023Updated 2 years ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,512Mar 17, 2026Updated 2 months ago
- PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.☆625Sep 26, 2023Updated 2 years ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆267Jun 29, 2024Updated last year
- A tool to help query AD via the LDAP protocol☆631Sep 25, 2024Updated last year
- CobaltWhispers is an aggressor script that utilizes a collection of Beacon Object Files (BOF) for Cobalt Strike to perform process inject…☆243Jan 4, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Active Directory Certificate Services (ADCS) enumeration library with BloodHound CE v6 export support☆80Apr 26, 2026Updated last month
- An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting…☆1,114Jun 17, 2022Updated 3 years ago
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆312Dec 9, 2023Updated 2 years ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,103Apr 19, 2023Updated 3 years ago
- Template-based generation of shellcode loaders☆81Apr 20, 2024Updated 2 years ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,863Nov 3, 2024Updated last year
- Original C Implementation of the Hell's Gate VX Technique☆1,187Jun 28, 2021Updated 4 years ago
- COFF file (BOF) for managing Kerberos tickets.☆326Jul 2, 2023Updated 2 years ago
- Exploitation of process killer drivers☆205Oct 17, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆957Jul 26, 2021Updated 4 years ago
- ErebusGate for Nim Bypass AV/EDR☆159Nov 7, 2022Updated 3 years ago
- Lateral Movement Using DCOM and DLL Hijacking☆327Jun 18, 2023Updated 2 years ago
- Replace the .txt section of the current loaded modules from \KnownDlls\☆306Sep 28, 2022Updated 3 years ago
- Various ways to execute shellcode☆512Mar 13, 2024Updated 2 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆693Aug 15, 2025Updated 9 months ago
- C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.☆111Apr 14, 2023Updated 3 years ago