Alternatives and similar repositories for Bypass-Sandbox-Evasion:

Users that are interested in Bypass-Sandbox-Evasion are comparing it to the libraries listed below

• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆170Updated 2 years ago
• XaFF-XaFF / CaveCarver
  CaveCarver - PE backdooring tool which utilizes and automates code cave technique
  ☆225Updated 2 years ago
• NUL0x4C / NoRunPI
  Run Your Payload Without Running Your Payload
  ☆181Updated 2 years ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆199Updated last year
• florylsk / NtRemoteLoad
  Remote Shellcode Injector
  ☆213Updated last year
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆185Updated last year
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆151Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆158Updated 5 months ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆137Updated last year
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆120Updated 5 months ago
• naksyn / DojoLoader
  Generic PE loader for fast prototyping evasion techniques
  ☆231Updated 10 months ago
• souzomain / Shaco
  Shaco is a linux agent for havoc
  ☆160Updated last year
• Faisal-P27 / WAREED-DNS-C2
  ☆116Updated last month
• SaadAhla / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆55Updated 8 months ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆147Updated last month
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆145Updated last year
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆131Updated 9 months ago
• Mr-Un1k0d3r / Cookie-and-Handle-Stealer
  C or BOF file to extract WebKit master key to decrypt user cookie
  ☆196Updated last year
• trevorsaudi / Mshikaki
  A shellcode injection tool showcasing various process injection techniques
  ☆136Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆84Updated last month
• CognisysGroup / HadesLdr
  Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
  ☆292Updated last year
• VoldeSec / PatchlessCLRLoader
  .NET assembly loader with patchless AMSI and ETW bypass
  ☆328Updated 2 years ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆140Updated 6 months ago
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆220Updated 11 months ago
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆160Updated 11 months ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated last year
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆178Updated last year
• SaadAhla / PE-Obfuscator
  PE obfuscator with Evasion in mind
  ☆213Updated 2 years ago