Alternatives and similar repositories for fileless-xec

Users that are interested in fileless-xec are comparing it to the libraries listed below

• ariary / QueenSono
  Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)
  ☆166Updated 4 years ago
• iDigitalFlame / XMT
  eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features
  ☆102Updated 3 weeks ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆221Updated 3 years ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆228Updated 2 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆197Updated 3 years ago
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆387Updated 2 years ago
• andreiverse / grc2
  grim reaper c2
  ☆346Updated 3 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆291Updated 2 years ago
• t3hbb / NSGenCS
  Extendable payload obfuscation and delivery framework
  ☆145Updated 3 years ago
• S3cur3Th1sSh1t / NimGetSyscallStub
  Get fresh Syscalls from a fresh ntdll.dll copy
  ☆236Updated 3 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆261Updated 3 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆337Updated last year
• f1zm0 / acheron
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆346Updated 2 years ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆124Updated 8 months ago
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆170Updated 4 years ago
• Ne0nd0g / merlin-agent
  Post-exploitation agent for Merlin
  ☆202Updated 8 months ago
• S3cur3Th1sSh1t / Nim-RunPE
  A Nim implementation of reflective PE-Loading from memory
  ☆297Updated last year
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆313Updated 4 years ago
• IkerSaint / KingHamlet
  Process Ghosting Tool
  ☆174Updated 4 years ago
• Trackflaw / CVE-2023-23397
  Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.
  ☆126Updated 2 years ago
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆370Updated 4 years ago
• Cobalt-Strike / sleep_python_bridge
  This project is 'bridge' between the sleep and python language. It allows the control of a Cobalt Strike teamserver through python withou…
  ☆188Updated 5 months ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆146Updated 2 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆241Updated 11 months ago
• Cerbersec / DomainBorrowingC2
  ☆170Updated 4 years ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆145Updated 2 years ago
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆344Updated 3 years ago
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆177Updated 3 years ago
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆302Updated 3 years ago
• nettitude / ShellcodeMutator
  ☆247Updated 3 years ago