acedef/SynthAPT external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

acedef/SynthAPT

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/acedef/SynthAPT)

Close

acedef / SynthAPTView on GitHubMore

• External links
• Readme badge

Generate malware with AI

☆222Apr 14, 2026Updated last month

Alternatives and similar repositories for SynthAPT

Users that are interested in SynthAPT are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• PrincipleCheck / KslKatzBof

  View on GitHub
  ☆84Apr 8, 2026Updated 2 months ago
• racoten / CannonLoader

  View on GitHub
  Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs
  ☆24Jul 11, 2025Updated 11 months ago
• JoasASantos / Probabilistic-Call-Stack-PoC

  View on GitHub
  A proof-of-concept to demonstrate randomized execution paths and their impact on call stack signatures — ideal for EDR testing, behavior-…
  ☆24Jan 17, 2026Updated 4 months ago
• frkngksl / SilentNimvest

  View on GitHub
  Nim implementation for sud0Ru's Credential Dumping from SAM/SECURITY Hives Method (a.k.a. SilentHarvest)
  ☆105Apr 4, 2026Updated 2 months ago
• JayGLXR / RustyMirage

  View on GitHub
  A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆38Mar 6, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• jc-ryan / holistic_automated_red_teaming

  View on GitHub
  [EMNLP 2024] Holistic Automated Red Teaming for Large Language Models through Top-Down Test Case Generation and Multi-turn Interaction
  ☆17Nov 9, 2024Updated last year
• preludeorg / ThreatIntelligenceConsumer

  View on GitHub
  Demonstrates consuming from a SecurityTrace ETW session by consuming from the Threat-Intelligence ETW provider without a driver or PPL pr…
  ☆77Jan 19, 2026Updated 4 months ago
• Teach2Breach / noldr

  View on GitHub
  Dynamically resolve API function addresses at runtime in a secure manner.
  ☆71Nov 11, 2025Updated 7 months ago
• Logisek / AZexec

  View on GitHub
  The Azure Execution Tool
  ☆158Feb 6, 2026Updated 4 months ago
• GoSecure / prompt

  View on GitHub
  AI-based implant feature
  ☆25Apr 28, 2025Updated last year
• nbaertsch / PoolProxy

  View on GitHub
  Proxy function calls through the thread pool with ease
  ☆31Feb 27, 2025Updated last year
• thalium / rkchk

  View on GitHub
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆63Mar 12, 2025Updated last year
• h41th / Simple-Crystal-Palace-RDLL-template-for-Adaptix

  View on GitHub
  ☆50Feb 12, 2026Updated 3 months ago
• basharbachir / HostingCLR-Bypass-AMSI-Windows-Defender

  View on GitHub
  ☆11Apr 23, 2019Updated 7 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• CompassSecurity / pipeleek

  View on GitHub
  Pipeleek scans CI/CD logs and artifacts to detect leaked secrets and pivot from them
  ☆19Jun 3, 2026Updated last week
• incursi0n / BlueSAM

  View on GitHub
  A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.
  ☆160Apr 15, 2026Updated last month
• itaymigdal / Poshito

  View on GitHub
  Poshito is a Windows C2 over Telegram
  ☆21Oct 30, 2024Updated last year
• nbaertsch / Shrike

  View on GitHub
  Hunting and injecting RWX 'mockingjay' DLLs in pure nim
  ☆62Dec 11, 2024Updated last year
• mrLochness350 / Libload-Reflective

  View on GitHub
  ☆18Feb 14, 2025Updated last year
• kleiton0x00 / RtlHijack

  View on GitHub
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆79Aug 25, 2025Updated 9 months ago
• MHaggis / NEBULA

  View on GitHub
  Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques
  ☆129Dec 28, 2025Updated 5 months ago
• pruno7 / nEkko

  View on GitHub
  A nim port of C5pider's Ekko project.
  ☆18Oct 1, 2022Updated 3 years ago
• 0xsh3llf1r3 / ColdWer

  View on GitHub
  Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass
  ☆139Jan 29, 2026Updated 4 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• tehstoni / cmstp_uac_bypass_bof

  View on GitHub
  ☆16May 30, 2025Updated last year
• zero2504 / Early-Cryo-Bird-Injections

  View on GitHub
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆143Apr 6, 2025Updated last year
• Print3M / epic

  View on GitHub
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆128Dec 23, 2025Updated 5 months ago
• amroes / FlexSheller

  View on GitHub
  ☆13Feb 4, 2025Updated last year
• nbaertsch / AutoAppDomainHijack

  View on GitHub
  Automated .NET AppDomain hijack payload generation
  ☆129Feb 4, 2025Updated last year
• fin3ss3g0d / StoneKeeper

  View on GitHub
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆209Dec 25, 2024Updated last year
• CompassSecurity / conkeyscan

  View on GitHub
  A Pentesters Confluence Keyword Scanner
  ☆19Dec 3, 2024Updated last year
• Teach2Breach / pool_party_rs

  View on GitHub
  remote process injections using pool party techniques
  ☆71Jun 29, 2025Updated 11 months ago
• Octoberfest7 / SilentHarvest_BOF

  View on GitHub
  A Cobalt Strike BOF implementation of the SilentHarvest registry dumping technique
  ☆178Apr 14, 2026Updated last month
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• smokeme / asar-backdoor

  View on GitHub
  ☆34Mar 19, 2025Updated last year
• 0xflux / Vectored-Exception-Handling-Squared

  View on GitHub
  Vectored Exception Handling Squared
  ☆30Dec 27, 2025Updated 5 months ago
• adanto / EtwTiViewer

  View on GitHub
  Live ETW-TI event viewer for Windows kernel threat-intelligence telemetry. Research tool for exploring the same signals commercial EDRs r…
  ☆149Apr 15, 2026Updated last month
• entropy-z / Kharon

  View on GitHub
  Agent for AdaptixC2 with focus in evasion, capability and malleable.
  ☆212Apr 26, 2026Updated last month
• garrettfoster13 / ldap_bofs

  View on GitHub
  Random BOFs for LDAP tradecraft
  ☆74Sep 9, 2025Updated 9 months ago
• In3x0rabl3 / Proxywatch

  View on GitHub
  ProxyWatch
  ☆49Apr 25, 2026Updated last month
• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆26Nov 20, 2025Updated 6 months ago