Alternatives and similar repositories for sf2

Users that are interested in sf2 are comparing it to the libraries listed below

• ntdll0 / HVNC
  My POC implementation of HVNC (Hidden VNC / Hidden Desktop)
  ☆23Updated 5 months ago
• LimerBoy / Soviet-Thief
  Yandex browser passwords and credit-cards decryption algorithm
  ☆13Updated last month
• Goodies365 / YandexDecrypt
  Decrypting yandex browser passwords
  ☆20Updated last month
• XShar / shell_crypor_framework
  Криптор на шелл-кодах
  ☆9Updated 5 years ago
• JrM2628 / httpworker
  A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…
  ☆90Updated last year
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆90Updated 8 months ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• MzHmO / Privileger
  Privileger is a tool to work with Windows Privileges
  ☆135Updated 2 years ago
• XaFF-XaFF / CaveCarver
  CaveCarver - PE backdooring tool which utilizes and automates code cave technique
  ☆224Updated 2 years ago
• Chainski / Chainski-Crypter
  Lime Crypter Obfuscator Mod
  ☆30Updated 11 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆41Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆66Updated last month
• florylsk / NtRemoteLoad
  Remote Shellcode Injector
  ☆217Updated last year
• NUL0x4C / NoRunPI
  Run Your Payload Without Running Your Payload
  ☆182Updated 2 years ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆156Updated 2 months ago
• unkvolism / Fuck-Etw
  Bypass the Event Trace Windows(ETW) and unhook ntdll.
  ☆103Updated last year
• XaFF-XaFF / Shellcodev
  Shellcodev is a tool designed to help and automate the process of shellcode creation.
  ☆110Updated last year
• tehstoni / LexiCrypt
  Shellcode encryptor using a substitution cipher with a randomly generated key.
  ☆129Updated 4 months ago
• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆169Updated 2 years ago
• dr4k0nia / NixImports
  A .NET malware loader, using API-Hashing to evade static analysis
  ☆208Updated 2 years ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆105Updated 2 years ago
• ZeroMemoryEx / Bypass-Sandbox-Evasion
  Bypass Malware Sandbox Evasion Ram check
  ☆137Updated 2 years ago
• naksyn / DojoLoader
  Generic PE loader for fast prototyping evasion techniques
  ☆231Updated 11 months ago
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆178Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆120Updated 6 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆89Updated 11 months ago
• S12cybersecurity / S12URootkit
  User Mode Windows Rootkit
  ☆63Updated last year