Alternatives and similar repositories for fileless-xec

Users that are interested in fileless-xec are comparing it to the libraries listed below

• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆219Updated 3 years ago
• ariary / QueenSono
  Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)
  ☆147Updated 3 years ago
• iDigitalFlame / XMT
  eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features
  ☆100Updated last week
• dobin / antnium
  A C2 framework for initial access in Go
  ☆187Updated 3 years ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆222Updated 2 years ago
• d4rckh / grc2
  grim reaper c2
  ☆338Updated 2 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆255Updated 2 years ago
• S3cur3Th1sSh1t / NimGetSyscallStub
  Get fresh Syscalls from a fresh ntdll.dll copy
  ☆232Updated 3 years ago
• t3hbb / NSGenCS
  Extendable payload obfuscation and delivery framework
  ☆145Updated 2 years ago
• Ne0nd0g / merlin-agent
  Post-exploitation agent for Merlin
  ☆199Updated 3 months ago
• Cerbersec / DomainBorrowingC2
  ☆170Updated 4 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆284Updated 2 years ago
• S3cur3Th1sSh1t / Nim-RunPE
  A Nim implementation of reflective PE-Loading from memory
  ☆286Updated 11 months ago
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆375Updated 2 years ago
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆329Updated 3 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆186Updated this week
• f1zm0 / acheron
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆330Updated 2 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆303Updated last year
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆230Updated 3 years ago
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆167Updated 4 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆333Updated last year
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆354Updated 2 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆240Updated 6 months ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆140Updated last year
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆177Updated 3 years ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆112Updated 3 months ago
• ly4k / PrintNightmare
  Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)
  ☆195Updated 3 years ago
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆369Updated 3 years ago
• mobdk / CopyCat
  Simple rapper for Mimikatz, bypass Defender
  ☆140Updated 3 years ago
• Cobalt-Strike / sleep_python_bridge
  This project is 'bridge' between the sleep and python language. It allows the control of a Cobalt Strike teamserver through python withou…
  ☆185Updated 2 years ago