A runtime for developing large-scale and complex shellcode.
☆22Feb 15, 2026Updated last week
Alternatives and similar repositories for Gleam-RT
Users that are interested in Gleam-RT are comparing it to the libraries listed below
Sorting:
- ☆14Dec 26, 2024Updated last year
- Position-independent Reflective Loader for macOS☆112Feb 19, 2026Updated last week
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆20Dec 3, 2024Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- A Simple PoC☆22May 24, 2024Updated last year
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆186Jan 11, 2026Updated last month
- MuddyWater C2 framework research☆12Jun 28, 2023Updated 2 years ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆30Sep 24, 2025Updated 5 months ago
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 3 months ago
- Two C# RunPE's capable of x86 and x64 injections☆11Dec 2, 2018Updated 7 years ago
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 10 months ago
- An example of an external LLVM plugin module transform pass for the latest versions.☆14Oct 21, 2025Updated 4 months ago
- Collection of different rootkit functionality, each driver representing a different rootkit component☆12May 27, 2025Updated 9 months ago
- ☆14Jan 7, 2023Updated 3 years ago
- ☆17Sep 25, 2024Updated last year
- A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback …☆14Oct 21, 2024Updated last year
- Find jmp gadgets for call stack spoofing.☆74Oct 1, 2025Updated 4 months ago
- ☆126Sep 1, 2024Updated last year
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆128Jan 28, 2026Updated 3 weeks ago
- Self-mutating macOS implant☆120Dec 18, 2025Updated 2 months ago
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆261Oct 16, 2024Updated last year
- A pointer encryption library intended for Red Team implant design in Rust.☆66Oct 1, 2025Updated 4 months ago
- shellcode loader☆29Jul 23, 2025Updated 7 months ago
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…☆43Jan 15, 2026Updated last month
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆35Dec 1, 2025Updated 2 months ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.☆74Apr 18, 2025Updated 10 months ago
- ☆31Sep 12, 2024Updated last year
- A malicous Golang Package☆15Apr 21, 2025Updated 10 months ago
- A simple BOF (Beacon Object File) to search files in the system☆15Dec 2, 2023Updated 2 years ago
- various methods of making API calls☆19Feb 1, 2025Updated last year
- Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)☆18Jun 6, 2025Updated 8 months ago
- ☆17May 7, 2025Updated 9 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 10 months ago
- Arsenal of modules to beacon postex☆94Feb 18, 2026Updated last week
- Modular C2 server to tame your pack of wolves☆21Jan 7, 2026Updated last month
- Slides for COM Hijacking AV/EDR Talk on 38c3☆75Jan 3, 2025Updated last year
- A simple header only SHA1 implementation in C (no dependencies)☆38Feb 10, 2025Updated last year
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆96Mar 20, 2023Updated 2 years ago