☆50Nov 26, 2025Updated 7 months ago
Alternatives and similar repositories for Anti-Sandbox
Users that are interested in Anti-Sandbox are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Minimalistic HTTP(S) client for the NT kernel☆61Dec 1, 2025Updated 7 months ago
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆121Dec 21, 2025Updated 6 months ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated last year
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 6 months ago
- Notion C2 Profile for Mythic☆46Apr 30, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆22Jul 17, 2024Updated last year
- Dump protected files (SAM,SYSTEM,SECURITY) by parsing the raw NTFS partition☆76Nov 11, 2025Updated 7 months ago
- Obfuscate payloads using IPv4, IPv6, MAC or UUID strings☆24Feb 17, 2024Updated 2 years ago
- ☆14Nov 8, 2024Updated last year
- Modern security products (CrowdStrike, Bitdefender, SentinelOne, etc.) hook the nLoadImage function inside clr.dll to intercept and scan …☆214Dec 8, 2025Updated 7 months ago
- ExportHider: Generating Export Table during Runtime to Hide the Exported Functions from the DLL File.☆33Apr 12, 2026Updated 2 months ago
- Proxll is a tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆41Oct 8, 2024Updated last year
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Apr 15, 2024Updated 2 years ago
- Detection Engineering Tools☆29Jun 25, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- EmbedExeLnk by x86matthew modified by d4rkiZ☆46Apr 27, 2023Updated 3 years ago
- System Call Integrity Layer - experimental security research☆27Apr 14, 2026Updated 2 months ago
- Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.☆116Jan 26, 2026Updated 5 months ago
- Demonstrates consuming from a SecurityTrace ETW session by consuming from the Threat-Intelligence ETW provider without a driver or PPL pr…☆79Jan 19, 2026Updated 5 months ago
- The code I write in my blog☆112Jun 27, 2026Updated last week
- CVE-2025-59501 POC code☆26Nov 20, 2025Updated 7 months ago
- Threat Hunting queries of multiple platforms☆75Jul 1, 2026Updated last week
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆90Oct 20, 2025Updated 8 months ago
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆97Feb 9, 2026Updated 5 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Jul 15, 2023Updated 2 years ago
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆27Aug 18, 2024Updated last year
- ☆17May 5, 2026Updated 2 months ago
- A C++ REPL for IDA Pro / IDA C++ SDK☆96Mar 26, 2026Updated 3 months ago
- An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.☆34May 8, 2026Updated 2 months ago
- tests to catch some sloppy hv impls☆36Mar 16, 2026Updated 3 months ago
- a BOF implementation of various registry persistence methods☆98Nov 11, 2025Updated 7 months ago
- Rusty Mimikatz - All credits to: github.com/ThottySploity/mimiRust (Original author deleted account so I uploaded for community use)☆21Nov 24, 2022Updated 3 years ago
- Step-by-step documentation on how to decrypt SCCM database secrets offline☆50Oct 20, 2025Updated 8 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.☆23Nov 11, 2025Updated 7 months ago
- ☆14Jul 26, 2025Updated 11 months ago
- Fluently detect security measures in software.☆34Jun 29, 2026Updated last week
- A multi-platform CI/CD vulnerability detection and attack automation tool for identifying security weaknesses in pipeline configurations.☆164Updated this week
- Set of PoC to abuse Windows minifilters functionality☆92May 1, 2026Updated 2 months ago
- Nim implementation for sud0Ru's Credential Dumping from SAM/SECURITY Hives Method (a.k.a. SilentHarvest)☆106Apr 4, 2026Updated 3 months ago
- Virtual Trust Level (VTL 1) secure call tracing☆103Feb 12, 2026Updated 4 months ago