ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
☆45May 22, 2025Updated 9 months ago
Alternatives and similar repositories for ShadeLoader
Users that are interested in ShadeLoader are comparing it to the libraries listed below
Sorting:
- simple shellcode injector for Windows / Process Hollowing☆15Jun 26, 2024Updated last year
- Golang 写的免杀框架,通过系统调用等手法bypass AV/EDR☆23Jul 11, 2024Updated last year
- Shellcode Loader Library.☆14Sep 21, 2025Updated 5 months ago
- go实现的shellcode免杀加载器,实测时可过火绒,360。当前效果请自行评判。☆44Sep 11, 2024Updated last year
- This Python app allows users to inject malicious payloads into PDF files through a GUI. It supports three injection methods: URL, file, a…☆28Mar 26, 2023Updated 2 years ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆102Jun 16, 2024Updated last year
- SigFlip与白加黑的完美结合。☆37May 19, 2025Updated 9 months ago
- Artemis - C++ Hell's Gate Syscall Implementation☆34Aug 16, 2023Updated 2 years ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Feb 6, 2026Updated 3 weeks ago
- 免杀☆12May 6, 2024Updated last year
- ☆11Dec 8, 2023Updated 2 years ago
- DLL Unhooking☆13Mar 26, 2021Updated 4 years ago
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆24Apr 4, 2023Updated 2 years ago
- NOC is an Integration Bypasser, Change PoC Binary to quirks of working with the LLVM.☆11Jul 22, 2024Updated last year
- ☆11Nov 12, 2023Updated 2 years ago
- Self Cleanup in post-ex job☆59Sep 10, 2024Updated last year
- Havoc plugin allowing in-memory execution of PowerShell cmdlets☆13Dec 14, 2023Updated 2 years ago
- Custom Python shellcode encryptor and obfuscator☆14Jul 31, 2025Updated 7 months ago
- A tool to assist DLL hijacking via the Havoc GUI☆12Jan 9, 2024Updated 2 years ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆18Oct 31, 2024Updated last year
- CipherRun is an ethical hacking tool used to execute shellcode easily while bypassing antivirus solutions.☆11Jan 30, 2024Updated 2 years ago
- Just another repository for malware development☆13May 12, 2024Updated last year
- Detect Beacon Powerful (Include CobatStrike 4.10 Aha~)☆21Oct 18, 2024Updated last year
- FSCAN免杀版☆25Jan 8, 2024Updated 2 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆42Aug 6, 2024Updated last year
- A process injection technique using only thread context manipulation☆41Dec 18, 2023Updated 2 years ago
- VMware vCenter Server远程代码执行漏洞 (CVE-2021-21972)批量检测脚本☆11Feb 25, 2021Updated 5 years ago
- Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"☆15May 15, 2024Updated last year
- HTML smuggling is not an evil, it can be useful☆14Jan 28, 2023Updated 3 years ago
- Excel Add In Payload Generator☆14Oct 9, 2023Updated 2 years ago
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆200May 29, 2025Updated 9 months ago
- A robust Windows Process Executable Packer and Launcher implementation written in Rust for Windows x64 systems.☆42Jan 9, 2025Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆75Jul 29, 2024Updated last year
- Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)☆18Jun 6, 2025Updated 8 months ago
- The PoC implementations for the Android code packing technique.☆14Jul 24, 2016Updated 9 years ago
- Rasta's mouse AMSI patch but with function that makes it undetectable.☆14Apr 21, 2021Updated 4 years ago
- Yet another windows syscall library☆18Jun 22, 2020Updated 5 years ago
- Unauthenticated RCE Flaw in Rejetto HTTP File Server (CVE-2024-23692)☆16Jun 13, 2024Updated last year
- ☆19May 1, 2025Updated 10 months ago