Alternatives and similar repositories for Anti-Sandbox

Users that are interested in Anti-Sandbox are comparing it to the libraries listed below

• chainloaded / Kernel-HTTP-Client

  View on GitHub
  Minimalistic HTTP(S) client for the NT kernel
  ☆61Dec 1, 2025Updated 2 months ago
• RayRRT / ESC1-unPAC

  View on GitHub
  A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…
  ☆113Dec 21, 2025Updated last month
• WKL-Sec / slack-udc2

  View on GitHub
  Cobalt Strike UDC2 implementation that provides an Slack C2 channel
  ☆60Jan 5, 2026Updated last month
• husseinphp / Hide-Search-Result

  View on GitHub
  ☆14Nov 8, 2024Updated last year
• Cracked5pider / Rhaast

  View on GitHub
  doesnt work and wont work on it anymore
  ☆10Jul 8, 2024Updated last year
• EvilBytecode / EvilByte-Remote-AMSI-Bypass

  View on GitHub
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆54May 12, 2025Updated 9 months ago
• mochabyte0x / TrampoLatte

  View on GitHub
  A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow
  ☆18Jun 26, 2025Updated 7 months ago
• OOAFA / squeegee

  View on GitHub
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Apr 15, 2024Updated last year
• Whitecat18 / static_encrypt

  View on GitHub
  Static Encrypt is an crate that encrypts string literals at compile time and only decrypted at runtime when needed.
  ☆55Jan 17, 2026Updated 3 weeks ago
• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆25Nov 20, 2025Updated 2 months ago
• KickedDroid / loadstar

  View on GitHub
  A different approach to writing BOFs in rust.
  ☆18Aug 20, 2025Updated 5 months ago
• mallo-m / AxiomSecrets

  View on GitHub
  Dump protected files (SAM,SYSTEM,SECURITY) by parsing the raw NTFS partition
  ☆32Nov 11, 2025Updated 3 months ago
• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆25Jan 31, 2026Updated 2 weeks ago
• 0xNinjaCyclone / dalgo

  View on GitHub
  ☆16Nov 26, 2024Updated last year
• Maldev-Academy / GitHubDeviceCodePhishing

  View on GitHub
  A tool to easily perform GitHub Device Code Phishing on red team engagements
  ☆82Feb 9, 2026Updated last week
• xM0kht4r / AV-EDR-Killer

  View on GitHub
  AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)
  ☆208Jan 21, 2026Updated 3 weeks ago
• logangoins / BadTakeover-BOF

  View on GitHub
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆85Oct 20, 2025Updated 3 months ago
• g3tsyst3m / CodefromBlog

  View on GitHub
  The code I write in my blog
  ☆62Jan 29, 2026Updated 2 weeks ago
• skelsec / awinrm

  View on GitHub
  ☆18Feb 1, 2026Updated 2 weeks ago
• amohanta / Detection_Engineering_Tools

  View on GitHub
  Detection Engineering Tools
  ☆20Updated this week
• Krypteria / Proxll

  View on GitHub
  Proxll is a tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h
  ☆41Oct 8, 2024Updated last year
• vysecurity / PacketParser

  View on GitHub
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆22Jul 17, 2024Updated last year
• ricardojoserf / SharpObfuscate

  View on GitHub
  Obfuscate payloads using IPv4, IPv6, MAC or UUID strings
  ☆22Feb 17, 2024Updated last year
• EvilBytecode / NoMoreStealers

  View on GitHub
  NoMoreStealers is a Windows file system minifilter driver that protects sensitive user data from untrusted processes.
  ☆94Nov 7, 2025Updated 3 months ago
• RayRRT / BOFs

  View on GitHub
  Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.
  ☆99Jan 26, 2026Updated 2 weeks ago
• d4rkiZ / EmbedExeLnk-

  View on GitHub
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆42Apr 27, 2023Updated 2 years ago
• cyndicatelabs / brc4_profile_maker

  View on GitHub
  An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.
  ☆31May 23, 2025Updated 8 months ago
• alioguzhan / truffleshow

  View on GitHub
  A simple web viewer for TruffleHog JSON output.
  ☆19Jan 7, 2026Updated last month
• wadgamaraldeen / My-custom-sensitive-info-disclsure-nuclei-template

  View on GitHub
  My-custom-sensitive-info-disclsure-nuclei-template
  ☆30Jan 3, 2026Updated last month
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆25Dec 20, 2025Updated last month
• bladeatlas / Nest-microservices

  View on GitHub
  ☆15Feb 5, 2025Updated last year
• safebuffer / redblock

  View on GitHub
  RedBlock is an Nginx module designed for offensive security operations and red teaming. This module empowers security professionals to ea…
  ☆23Jan 21, 2024Updated 2 years ago
• swoops / video-game-save-file-trojans

  View on GitHub
  Demonstrates why it's not safe to download random save files from the Internet
  ☆18Dec 30, 2022Updated 3 years ago
• Devolutions / ceviche-rs

  View on GitHub
  Rust daemon/service wrapper
  ☆24Oct 31, 2025Updated 3 months ago
• 0x00wolf / PATHBYTER-Hybrid-Encryption-Ransomware-with-Multiprocessing-in-Python

  View on GitHub
  Pathbyter is a lightning fast proof-of-concept ransomware that uses RSA wrapped AES, multiprocessing, in memory key encryption, appends e…
  ☆26Sep 25, 2023Updated 2 years ago
• a2awais / Threat-Hunting

  View on GitHub
  Threat Hunting queries of multiple platforms
  ☆52Updated this week
• Fatmike-GH / JitDecrypter

  View on GitHub
  A Just-In-Time Decrypter for Windows executables (x86 and x64) that performs real-time, instruction-level decryption of encrypted code se…
  ☆48Nov 3, 2025Updated 3 months ago
• kypvas / shellcode-mutator

  View on GitHub
  shellcode transformation tool for YARA evasion
  ☆50Dec 17, 2025Updated last month
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆22Dec 18, 2024Updated last year