Alternatives and similar repositories for DDexec:

Users that are interested in DDexec are comparing it to the libraries listed below

• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆487Updated 6 months ago
• ernw / static-toolbox
  A collection of statically compiled tools like Nmap and Socat.
  ☆433Updated 9 months ago
• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,804Updated 9 months ago
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆940Updated last year
• antonioCoco / RemotePotato0
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,351Updated 2 years ago
• carloslack / KoviD
  Linux kernel rootkit
  ☆307Updated this week
• stealthcopter / deepce
  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
  ☆1,230Updated 7 months ago
• wavestone-cdt / EDRSandblast
  ☆1,577Updated 4 months ago
• Mr-Un1k0d3r / EDRs
  ☆2,036Updated last year
• phra / PEzor
  Open-Source Shellcode & PE Packer
  ☆1,874Updated 11 months ago
• Mr-Un1k0d3r / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,439Updated last year
• mgeeky / RedWarden
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆938Updated 2 years ago
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆1,840Updated 4 months ago
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆684Updated 3 years ago
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,405Updated 3 years ago
• login-securite / lsassy
  Extract credentials from lsass remotely
  ☆2,079Updated 2 weeks ago
• xct / xc
  A small reverse shell for Linux & Windows
  ☆593Updated 7 months ago
• Crusaders-of-Rust / CVE-2022-0185
  CVE-2022-0185
  ☆366Updated 2 years ago
• outflanknl / Dumpert
  LSASS memory dumper using direct system calls and API unhooking.
  ☆1,501Updated 4 years ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,414Updated last year
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,148Updated 8 months ago
• p0dalirius / Coercer
  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
  ☆1,860Updated last month
• BeichenDream / GodPotato
  ☆1,861Updated last year
• worawit / CVE-2021-3156
  Sudo Baron Samedit Exploit
  ☆738Updated 3 years ago
• aahmad097 / AlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks
  ☆1,493Updated 2 years ago
• rasta-mouse / ThreatCheck
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆1,101Updated 7 months ago
• segmentati0nf4ult / linux-pam-backdoor
  Linux PAM Backdoor
  ☆320Updated last year
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,167Updated last year
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆297Updated last year
• antonioCoco / RunasCs
  RunasCs - Csharp and open version of windows builtin runas.exe
  ☆1,088Updated 6 months ago