Alternatives and similar repositories for xencrypt

Users that are interested in xencrypt are comparing it to the libraries listed below

• cham423 / cs-tools
  cobalt strike tools
  ☆31Updated 3 years ago
• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆29Updated 3 years ago
• whydee86 / FUD-ShellCode-UUID
  Making Shellcode fully undetectable using uuid
  ☆23Updated 4 years ago
• plackyhacker / Peruns-Fart
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆111Updated 3 years ago
• tomcarver16 / AmsiHook
  AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.
  ☆65Updated 5 years ago
• GetRektBoy724 / TripleS
  Extracting Syscall Stub, Modernized
  ☆65Updated 3 years ago
• plackyhacker / CmdLineSpoofer
  How to spoof the command line when spawning a new process from C#.
  ☆108Updated 3 years ago
• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass
  AmsiScanBufferBypass using D/Invoke
  ☆136Updated 4 years ago
• rasta-mouse / Covenant
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆13Updated 3 years ago
• S3cur3Th1sSh1t / SharpUnhooker
  C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
  ☆24Updated 2 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆56Updated 5 years ago
• S3cur3Th1sSh1t / RDPThiefInject
  RDPThief donut shellcode inject into mstsc
  ☆88Updated 4 years ago
• slyd0g / SK8RAT
  C++ implant that interfaces with a SK8PARK server
  ☆49Updated 4 years ago
• tomcarver16 / SimpleInjector
  A simple injector that uses LoadLibraryA
  ☆18Updated 5 years ago
• TheWover / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆162Updated 5 years ago
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆27Updated 4 years ago
• JrM2628 / httpworker
  A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…
  ☆90Updated last week
• ScriptIdiot / BeaconNotifier-Discord
  Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.
  ☆35Updated 3 years ago
• DamonMohammadbagher / NativePayload_CBT
  NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)
  ☆118Updated 2 years ago
• G0ldenGunSec / SharpTransactedLoad
  Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
  ☆169Updated 4 years ago
• GetRektBoy724 / ReversePowernoid
  Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)
  ☆30Updated 3 years ago
• reznok / MemoryLoader
  A .NET binary loader that bypasses AMSI
  ☆45Updated 4 years ago
• reveng007 / DareDevil
  Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10
  ☆37Updated 2 years ago
• redteamertips / DinvokeDupetokenAndThreadSwitcheroo
  ☆26Updated 4 years ago
• praetorian-inc / Matryoshka
  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.
  ☆39Updated 4 years ago
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆66Updated 3 years ago
• tommelo / lnk2pwn
  Malicious Shortcut(.lnk) Generator
  ☆85Updated 6 years ago
• PorLaCola25 / TransactedSharpMiniDump
  Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…
  ☆71Updated 4 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆91Updated 4 years ago
• vivami / OutlookParasite
  Outlook persistence using VSTO add-ins
  ☆87Updated 4 years ago