Alternatives and similar repositories for shellcodes

Users that are interested in shellcodes are comparing it to the libraries listed below

• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 5 years ago
• OtterHacker / Hooker
  ☆107Updated 8 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆137Updated 10 months ago
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆27Updated last year
• x86byte / Stuxnet-Rootkit
  Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis
  ☆61Updated 10 months ago
• mbanyamer / CVE-2025-30397---Windows-Server-2025-JScript-RCE-Use-After-Free-
  Remote Code Execution via Use-After-Free in JScript.dll (CVE-2025-30397)
  ☆59Updated last month
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated 9 months ago
• MatheuZSecurity / ModTracer
  ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.
  ☆83Updated 4 months ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆53Updated 4 months ago
• xpn / stego-playground
  ☆35Updated last year
• brosck / L1LKiller
  「⚠️」Performing a BYOVD on the truesight.sys driver
  ☆38Updated 7 months ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆88Updated last month
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆115Updated 3 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆42Updated 9 months ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆54Updated 7 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated 11 months ago
• FuzzySecurity / Magikarp
  ECC Public Key Cryptography
  ☆38Updated last year
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 5 months ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆54Updated 5 months ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated last year
• Maldev-Academy / CodeSearchDemo
  ☆40Updated last year
• nafiez / DataBlockNTLMLeak
  Windows Shell Link (LNK) Proof of Concept
  ☆15Updated last month
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated 2 years ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated 9 months ago
• 7eRoM / tutorials
  ☆16Updated 2 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆89Updated last year
• soheilsec / RT-workshop-2024
  فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن
  ☆32Updated 10 months ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• HulkOperator / AuthStager
  ☆55Updated 8 months ago
• CyberSecurityUP / AV-EDR-Evasion-Practical-Techniques-Course
  ☆39Updated 2 weeks ago