Alternatives and similar repositories for hermes:

Users that are interested in hermes are comparing it to the libraries listed below

• JayGLXR / RustyMirage
  A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆32Updated last month
• Chainski / PandaLoader
  A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.
  ☆48Updated last week
• 0xflux / Rust-Hells-Gate
  Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust
  ☆40Updated 10 months ago
• joaoviictorti / runas-rs
  A runas implementation with extra features in Rust
  ☆38Updated 2 weeks ago
• b1tg / Ox-C2
  Command & Control server and agent written in Rust
  ☆36Updated 2 years ago
• joaoviictorti / coffeeldr
  A COFF Loader written in Rust
  ☆97Updated 2 weeks ago
• joaoviictorti / uwd
  Call Stack Spoofing for Rust with support #[no_std]
  ☆83Updated this week
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆44Updated last year
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆98Updated 7 months ago
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆18Updated this week
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆103Updated last week
• safedv / RustVEHSyscalls
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆142Updated 5 months ago
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆205Updated 2 months ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆65Updated 2 weeks ago
• wsummerhill / DictionShellcode
  Encode shellcode into dictionary words for evasion and entropy reduction
  ☆25Updated 5 months ago
• joaoviictorti / userdmp
  A Rust crate to parse user-mode minidump files generated on Windows
  ☆14Updated last month
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆83Updated 2 years ago
• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆78Updated 2 years ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆218Updated 4 months ago
• joaoviictorti / rustclr
  Host CLR and run .NET binaries using Rust
  ☆100Updated 2 weeks ago
• EvilBytecode / RubyRedOps
  💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
  ☆9Updated this week
• S12cybersecurity / S12URootkit
  User Mode Windows Rootkit
  ☆59Updated last year
• Cracked5pider / kaine-assembly
  a demo module for the kaine agent to execute and inject assembly modules
  ☆37Updated 7 months ago
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆143Updated 2 months ago
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆63Updated 8 months ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆60Updated this week
• mrLochness350 / Libload-Reflective
  ☆12Updated 2 months ago
• hideckies / malsrc
  Collection of malware techniques for red teams.
  ☆48Updated this week
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆76Updated 2 months ago
• djackreuter / btexec
  Execute shellcode via Bluetooth device authentication
  ☆38Updated 2 months ago