Alternatives and similar repositories for Brute-Ratel-C4

Users that are interested in Brute-Ratel-C4 are comparing it to the libraries listed below

• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆42Updated 8 months ago
• Ethicalrat / Evasive-Loader
  Evasive loader to bypass static detection
  ☆59Updated 2 years ago
• yzddmr6 / SharpAlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks Rewrite In C#
  ☆90Updated 2 years ago
• 0x00Check / Amaterasu
  Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…
  ☆78Updated last year
• bobby-tablez / VBScrambler
  A Python-based VBScript Code Obfuscator
  ☆44Updated 2 months ago
• CBLabresearch / PhantomExecution
  Self Cleanup in post-ex job
  ☆59Updated last year
• b4nbird / shellcode_entropy_less
  replace the shellcode chatacters so that reduce the entropy
  ☆18Updated 2 years ago
• aleenzz / ChromeExtensionInstall
  Silently Install Chrome Extension For Persistence
  ☆97Updated last year
• roadwy / SideloadFinder
  frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can …
  ☆57Updated 2 years ago
• wabzsy / gonut
  Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
  ☆64Updated 2 years ago
• Haunted-Banshee / Shellcode-Hastur
  Shellcode Reductio Entropy Tools
  ☆74Updated 2 years ago
• kyxiaxiang / CrackSleeve4.9
  ☆44Updated 2 years ago
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆62Updated last year
• H4K6 / FilelessPELoader
  将PE文件进行AES加密，然后从远程拉取加载内存中实现免杀
  ☆37Updated 2 years ago
• coleak2021 / vehsyscall
  vehsyscall:a syscall project that may bypass EDR
  ☆61Updated last year
• andrecrafts / CobaltStrike-YARA-Bypass-f0b627fc
  Bypass YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellcode sequences.
  ☆52Updated 4 months ago
• howmp / donut_ollvm
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆69Updated 3 months ago
• Rvn0xsy / Havoc-Agent-Handler
  This is a third party agent for Havoc C2 written in golang.
  ☆58Updated 2 years ago
• BambiZombie / bypass_uac_bof
  一个普通的BOF用来BypassUAC
  ☆22Updated last year
• b4nbird / shellcodeLoaders
  ☆28Updated 2 years ago
• netero1010 / ClipboardHistoryThief
  POC tool to extract all persistent clipboard history data from clipboard service process memory
  ☆57Updated last year
• secur30nly / go-self-delete
  Go implementation of the self-deletion of an running executable from disk
  ☆113Updated 2 years ago
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆160Updated last year
• EddieIvan01 / rustdesk-hvnc
  HVNC based on RustDesk
  ☆108Updated last year
• Nero22k / cve-2023-36802
  Exploit for CVE-2023-36802 targeting MSKSSRV.SYS driver
  ☆112Updated 2 years ago
• baiyies / PowerOneLiner
  Powershell shellcode one-liner. Powershell免杀一句话上线器便捷生成
  ☆54Updated 2 years ago
• fei9747 / Awesome-CobaltStrike
  ☆15Updated 2 years ago
• TianNaYa / ProxyDll
  beta
  ☆120Updated last year
• nickvourd / CS-Aggressor-Kit
  Homemade Aggressor scripts kit for Cobalt Strike
  ☆90Updated 2 months ago
• hid3rx / PEPacker
  ☆100Updated 2 years ago