Alternatives and similar repositories for Bypass-Sandbox-Evasion

Users that are interested in Bypass-Sandbox-Evasion are comparing it to the libraries listed below

• d1rkmtrr / PE-Obfuscator
  PE obfuscator with Evasion in mind
  ☆213Updated 2 years ago
• XaFF-XaFF / CaveCarver
  CaveCarver - PE backdooring tool which utilizes and automates code cave technique
  ☆230Updated 2 years ago
• lem0nSec / KBlast
  Basic interactive Windows kernel offensive toolkit written in C
  ☆132Updated last month
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆121Updated 11 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆67Updated last year
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆171Updated last year
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆207Updated last year
• d1rkmtrr / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆143Updated 2 years ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆164Updated 10 months ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated 2 years ago
• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆177Updated 2 years ago
• florylsk / NtRemoteLoad
  Remote Shellcode Injector
  ☆220Updated 2 years ago
• hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypass
  CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
  ☆108Updated 2 years ago
• DamonMohammadbagher / NativePayload_PE1
  NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…
  ☆58Updated 2 years ago
• decoder-it / TokenStealer
  ☆163Updated 2 years ago
• d1rkmtrr / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆180Updated 2 years ago
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆178Updated 3 years ago
• JrM2628 / httpworker
  A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…
  ☆90Updated last month
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated 2 years ago
• ZeroMemoryEx / Tokenizer
  Kernel Mode Driver for Elevating Process Privileges
  ☆134Updated 2 years ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆197Updated last year
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆223Updated 2 years ago
• d1rkmtrr / ntdlll-unhooking-collection
  different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)
  ☆194Updated 2 years ago
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• Wh04m1001 / IFaultrepElevatedDataCollectionUAC
  ☆133Updated 3 years ago
• Faisal-P27 / WAREED-DNS-C2
  ☆121Updated 7 months ago
• Wra7h / SingleDose
  Generate Shellcode Loaders & Injects
  ☆156Updated 2 years ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆154Updated last year
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆220Updated 3 years ago