Alternatives and similar repositories for HiddenDesktop:

Users that are interested in HiddenDesktop are comparing it to the libraries listed below

• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,148Updated 8 months ago
• SaadAhla / FilelessPELoader
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆907Updated last year
• 0xHossam / Killer
  Killer is a simple tool designed to bypass AV/EDR security tools using various evasive techniques.
  ☆774Updated 6 months ago
• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,171Updated last year
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆820Updated 2 years ago
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,167Updated last year
• pwn1sher / KillDefender
  A small POC to make defender useless by removing its token privileges and lowering the token integrity
  ☆674Updated 2 years ago
• Tylous / SourcePoint
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,055Updated 9 months ago
• boku7 / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,275Updated last year
• optiv / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆710Updated last year
• mgeeky / RedWarden
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆938Updated 2 years ago
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆825Updated last year
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆895Updated 7 months ago
• ZeroMemoryEx / Terminator
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆937Updated last year
• XiaoliChan / wmiexec-Pro
  New generation of wmiexec.py
  ☆1,047Updated last month
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆417Updated last year
• trustedsec / CS-Remote-OPs-BOF
  ☆906Updated last week
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)
  ☆916Updated last year
• BeichenDream / GodPotato
  ☆1,861Updated last year
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,055Updated last year
• assume-breach / Home-Grown-Red-Team
  ☆682Updated 9 months ago
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆501Updated 5 months ago
• Offensive-Panda / ShadowDumper
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆418Updated last month
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆1,840Updated 4 months ago
• D00Movenok / BounceBack
  ↕️🤫 Stealth redirector for your red team operation security
  ☆648Updated 5 months ago
• RCStep / CSSG
  Cobalt Strike Shellcode Generator
  ☆646Updated last week
• r4wd3r / Suborner
  ☆467Updated last month
• icyguider / Nimcrypt2
  .NET, PE, & Raw Shellcode Packer/Loader Written in Nim
  ☆762Updated last year
• klezVirus / SysWhispers3
  SysWhispers on Steroids - AV/EDR evasion via direct system calls.
  ☆1,352Updated 5 months ago
• decoder-it / LocalPotato
  ☆683Updated last year