Alternatives and similar repositories for NimSkrull

Users that are interested in NimSkrull are comparing it to the libraries listed below

• freesoul / netstub

  View on GitHub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆17Sep 29, 2018Updated 7 years ago
• itaymigdal / GhostNap

  View on GitHub
  Sleep obfuscation for shellcode implants and their reflective shit
  ☆53Sep 19, 2023Updated 2 years ago
• OffenseTeacher / NimRekey

  View on GitHub
  ☆39May 20, 2023Updated 2 years ago
• samisecure / LsassDumpReflectiveDll

  View on GitHub
  Dump Lsass Memory Using a Reflective Dll
  ☆14Feb 4, 2022Updated 4 years ago
• Hackcraft-Labs / Blueprint

  View on GitHub
  Templating with sinister modules
  ☆16Jun 20, 2023Updated 2 years ago
• OffenseTeacher / Steganim

  View on GitHub
  ☆46Jun 21, 2023Updated 2 years ago
• robwillisinfo / Invoke-Decoder

  View on GitHub
  Invoke-Decoder – A PowerShell script to decode/deobfuscate malware samples
  ☆18Aug 2, 2020Updated 5 years ago
• TheKevinWang / HellsRunPE

  View on GitHub
  RunPE using Hell's Gate technique.
  ☆32Dec 4, 2020Updated 5 years ago
• danielwolfman / Invoke-WordThief

  View on GitHub
  This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.doc…
  ☆33Jul 24, 2020Updated 5 years ago
• secgroundzero / SharpAttack

  View on GitHub
  C# Situational Awareness Script
  ☆34Apr 26, 2019Updated 6 years ago
• py7hagoras / OfficeMacro64

  View on GitHub
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆21Feb 2, 2020Updated 6 years ago
• jsecu / BOF-pack-1

  View on GitHub
  A care package of useful bofs for red team engagments
  ☆55Dec 6, 2024Updated last year
• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Apr 7, 2022Updated 3 years ago
• Ch0pin / EternalBlue

  View on GitHub
  Handy script to automate the attack
  ☆22Dec 19, 2019Updated 6 years ago
• D4rthMaulCop / DumpKernel-S1

  View on GitHub
  A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80
  ☆21Apr 2, 2025Updated 10 months ago
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 3 years ago
• frkngksl / NiCOFF

  View on GitHub
  COFF and BOF Loader written in Nim
  ☆176Aug 1, 2022Updated 3 years ago
• Madsy / SelfLoader

  View on GitHub
  Simple code to resolve library functions at runtime
  ☆10Jan 5, 2015Updated 11 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Apr 21, 2022Updated 3 years ago
• airman604 / cms2cmd

  View on GitHub
  ☆10Nov 24, 2018Updated 7 years ago
• bufferbandit / silent_cleanup_uac_bypass

  View on GitHub
  Silent Cleanup UAC Bypass POC
  ☆11Dec 15, 2019Updated 6 years ago
• 0xJs / AzurePowerCommands

  View on GitHub
  Extra cmdlets to help with quering security related information from Azure
  ☆14Sep 16, 2024Updated last year
• d35ha / xPE

  View on GitHub
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆32Aug 7, 2019Updated 6 years ago
• aahmad097 / ZoomPersistence

  View on GitHub
  Zoom Persistence Aggressor and Handler
  ☆55Mar 24, 2021Updated 4 years ago
• Codeh4ck / MemoryPEInjector

  View on GitHub
  A tool that reads a PE file from a byte array buffer and injects it into memory.
  ☆28Aug 5, 2019Updated 6 years ago
• VirtualAlllocEx / DSC_SVC_REMOTE

  View on GitHub
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆55May 8, 2023Updated 2 years ago
• cocomelonc / 2022-05-02-malware-pers-3

  View on GitHub
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13May 2, 2022Updated 3 years ago
• stnby / TopHat

  View on GitHub
  Fully undetected backdoor with RSA Encrypted shell
  ☆11Jan 3, 2018Updated 8 years ago
• jamcut / ansible4redteams

  View on GitHub
  Ansible playbooks to facilitate redteam stuff
  ☆14Aug 2, 2016Updated 9 years ago
• Paulo-D2000 / ShellCodeObfuscator

  View on GitHub
  Simple shellcode obfuscator using PYTHON and C / C++
  ☆74Jun 17, 2020Updated 5 years ago
• FedericoCeratto / nim-socks5

  View on GitHub
  Nim Socks5 library
  ☆29Dec 29, 2021Updated 4 years ago
• frkngksl / ParallelNimcalls

  View on GitHub
  Nim version of MDSec's Parallel Syscall PoC
  ☆124Jan 14, 2022Updated 4 years ago
• x42en / sysplant

  View on GitHub
  Your syscall factory
  ☆126Jan 13, 2026Updated last month
• rbmm / Hollowed-Process

  View on GitHub
  ☆30Aug 24, 2025Updated 5 months ago
• plackyhacker / Peruns-Fart

  View on GitHub
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆117Dec 26, 2021Updated 4 years ago
• cocomelonc / 2022-06-05-malware-av-evasion-7

  View on GitHub
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆35Jun 5, 2022Updated 3 years ago
• mdsecactivebreach / TakeATest

  View on GitHub
  ☆19Mar 9, 2021Updated 4 years ago
• sk3w / beacon-object-files

  View on GitHub
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Nov 19, 2020Updated 5 years ago
• peiga / DumpThatLSASS

  View on GitHub
  Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation
  ☆31Sep 24, 2022Updated 3 years ago