Alternatives and similar repositories for Bypass-Sandbox-Evasion

Users that are interested in Bypass-Sandbox-Evasion are comparing it to the libraries listed below

• lem0nSec / KBlast
  Offensive Windows Kernel Toolset
  ☆131Updated 2 months ago
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆208Updated last year
• d1rkmtrr / PE-Obfuscator
  PE obfuscator with Evasion in mind
  ☆212Updated 2 years ago
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆121Updated 10 months ago
• decoder-it / TokenStealer
  ☆164Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆64Updated last year
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• d1rkmtrr / DocPlz
  Documents Exfiltration project for fun and educational purposes
  ☆145Updated last year
• XaFF-XaFF / CaveCarver
  CaveCarver - PE backdooring tool which utilizes and automates code cave technique
  ☆229Updated 2 years ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆164Updated 9 months ago
• hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypass
  CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
  ☆107Updated 2 years ago
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆172Updated last year
• DamonMohammadbagher / NativePayload_PE1
  NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…
  ☆58Updated 2 years ago
• JrM2628 / httpworker
  A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…
  ☆92Updated last year
• trevorsaudi / Zero-Import-Malware
  Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetM…
  ☆40Updated last year
• CodeXTF2 / WindowSpy
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆276Updated 6 months ago
• 0x00Check / ExploitLeakedHandle
  Identify and exploit leaked handles for local privilege escalation.
  ☆110Updated 2 years ago
• Wra7h / SingleDose
  Generate Shellcode Loaders & Injects
  ☆156Updated 2 years ago
• hackerhouse-opensource / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆179Updated last year
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆201Updated 2 years ago
• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆174Updated 2 years ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆86Updated last year
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆134Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆102Updated 5 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated last year
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆106Updated 2 years ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆193Updated last year
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated 2 years ago
• gatariee / Winton
  Command and Control (C2) framework
  ☆131Updated 4 months ago