Alternatives and similar repositories for shellcodes

Users that are interested in shellcodes are comparing it to the libraries listed below

• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• MatheuZSecurity / ModTracer
  ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.
  ☆86Updated 10 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆140Updated last year
• mbanyamer / CVE-2025-30397---Windows-Server-2025-JScript-RCE-Use-After-Free-
  Remote Code Execution via Use-After-Free in JScript.dll (CVE-2025-30397)
  ☆68Updated 7 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 6 years ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆59Updated 10 months ago
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆130Updated 9 months ago
• whokilleddb / ASPxecute
  Execute shellcode via ASPNET compiler
  ☆60Updated 3 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 5 months ago
• OtterHacker / Hooker
  ☆108Updated last year
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated last year
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆50Updated last year
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆63Updated last year
• FuzzySecurity / Magikarp
  ECC Public Key Cryptography
  ☆37Updated 2 years ago
• HulkOperator / AuthStager
  ☆59Updated last year
• hasherezade / flareon2024
  ☆39Updated last year
• m1ddl3w4r3 / WSL_Payload_Builder
  A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.
  ☆71Updated 2 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated last year
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆97Updated last year
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated 2 years ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆43Updated last year
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• x86byte / Stuxnet-Rootkit
  Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis
  ☆81Updated last year
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆63Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆71Updated last year
• volticks / CVE-2025-21692-poc
  Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75
  ☆39Updated 4 months ago
• EQSTLab / CVE-2024-46538
  PfSense Stored XSS lead to Arbitrary Code Execution exploit
  ☆49Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆88Updated last month
• xpn / stego-playground
  ☆36Updated 2 years ago