Alternatives and similar repositories for c-to-shellcode

Users that are interested in c-to-shellcode are comparing it to the libraries listed below

• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆80Updated 5 months ago
• Octoberfest7 / enumhandles_BOF
  ☆124Updated 10 months ago
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆155Updated 4 months ago
• RWXstoned / LdrShuffle
  Code execution/injection technique using DLL PEB module structure manipulation
  ☆129Updated last month
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆105Updated last year
• NtDallas / OdinLdr
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆127Updated 5 months ago
• rbmm / SC_DEMO
  ☆118Updated 4 months ago
• zero2504 / Early-Cryo-Bird-Injections
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆99Updated 3 months ago
• MEhrn00 / boflink
  Linker for Beacon Object Files
  ☆121Updated this week
• rad9800 / FileRenameJunctionsEDRDisable
  ☆155Updated 7 months ago
• MythicAgents / Kharon
  C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…
  ☆70Updated this week
• susMdT / ForsHops
  ForsHops
  ☆54Updated 3 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆75Updated 11 months ago
• FalconForceTeam / bof-winrm-client
  ☆115Updated 5 months ago
• Teach2Breach / moonwalk
  find dll base addresses without PEB WALK
  ☆135Updated this week
• fern89 / ghostwriting-2
  A process injection technique using only thread context manipulation
  ☆38Updated last year
• Retr0-code / hash-dumper
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆63Updated last year
• lap1nou / CLR_Heap_encryption
  ☆100Updated last year
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆130Updated 11 months ago
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆58Updated 9 months ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆155Updated 7 months ago
• ricardojoserf / NativeTokenImpersonate
  Impersonate Tokens using only NTAPI functions
  ☆77Updated 3 months ago
• racoten / BetterNetLoader
  A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints
  ☆99Updated last week
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆120Updated 7 months ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆117Updated 7 months ago
• 0prrr / Malwear-Sweet
  Malware?
  ☆70Updated 9 months ago
• rbmm / SC
  shell code example
  ☆57Updated 2 months ago
• maxDcb / DreamWalkers
  Reflective shellcode loaderwith advanced call stack spoofing and .NET support.
  ☆178Updated last week
• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆86Updated 2 years ago
• CICADA8-Research / TypeLibWalker
  TypeLib persistence technique
  ☆118Updated 8 months ago