☆70May 27, 2026Updated last month
Alternatives and similar repositories for Shai-Hulud-Open-Source
Users that are interested in Shai-Hulud-Open-Source are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A header-only, freestanding C++20 template for IR-bytecode VM loaders☆26May 10, 2026Updated 2 months ago
- A cmake template for crystal palace☆43Dec 20, 2025Updated 6 months ago
- Cross-platform CPU-based virtual machine detection framework for modern offensive security.☆48Feb 28, 2026Updated 4 months ago
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated 5 months ago
- ☆42Jul 1, 2026Updated last week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Filesystem interaction via firebeam virtual machine execution☆58Mar 26, 2026Updated 3 months ago
- 在原版nps的基础上,增加了nps探测,以及对应的利用方式(如获取cookie,页面等),进行一些简单的二开。未经过大量测试,可能存在bug。☆23Aug 5, 2025Updated 11 months ago
- A sleepmask based on Ekko that preserves unwind data at sleep time.☆54Mar 30, 2026Updated 3 months ago
- Async BOF to monitor and detect clipboard changes on a target system and return the clipboard contents.☆22May 5, 2026Updated 2 months ago
- Ported from [LACUNA Chain](https://github.com/MazX0p/LACUNA-Chain) by Mohamed Alzhrani (0xmaz). lacuna-rs is a reusable Rust crate that …☆17Jul 2, 2026Updated last week
- Async BOF that notifies the operator when a user connects to a local or remote target system.☆34Jun 17, 2026Updated 3 weeks ago
- Tyche is a Mythic HTTPX Profile Generator used to create Malleable C2 Profiles.☆46Mar 28, 2026Updated 3 months ago
- Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass☆142Jan 29, 2026Updated 5 months ago
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆83Apr 11, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- BOF POC of the DSCourier project / invoking WinGet via COM☆90Apr 23, 2026Updated 2 months ago
- Go实现用于Windows系统的进程隐藏工具,通过DLL注入技术将指定进程从任务管理器中隐藏☆26Jan 22, 2026Updated 5 months ago
- psexec-like remote execution using the paexec wire protocol that supports paexec and remoteexecm2 from manageengine adselfservice plus☆43Mar 24, 2026Updated 3 months ago
- a shadcn component renderer☆13Aug 11, 2024Updated last year
- ☆86Apr 8, 2026Updated 3 months ago
- ☆25Mar 23, 2026Updated 3 months ago
- Bloodhound alternative - simple ingestor. It generates low-level commands to exploit the AD easily and automatically: learn and control e…☆81Apr 26, 2026Updated 2 months ago
- A compiled language for Windows position-independent x86-64 shellcode and Beacon Object Files.☆170Jun 28, 2026Updated 2 weeks ago
- An open-source, C#-based remote administration tool (RAT), enabling complete control of a remote Windows machine, designed for legitimate…☆206Jun 30, 2026Updated 2 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Reverse shell macro using Word VBA☆18Oct 10, 2020Updated 5 years ago
- Linux Shared Library to Shellcode Loader☆100Feb 15, 2026Updated 5 months ago
- ASPX Web Shell with COFF Loader☆133Mar 10, 2026Updated 4 months ago
- Next-Generation BOF Template | BOF Linter | Obj Rewriter☆58Dec 4, 2025Updated 7 months ago
- App with Server Side Template Injection (SSTI) vulnerability - possible RCE - in Flask. Free vulnerable app for ethical hacking / penetra…☆17Sep 15, 2022Updated 3 years ago
- Evasive loader for .NET Framework assemblies☆82May 12, 2026Updated 2 months ago
- ☆57Jun 28, 2025Updated last year
- A Crystal Palace shared library to resolve & perform syscalls☆61Oct 29, 2025Updated 8 months ago
- Another new coercion primitive with LPE - machine-account NTLM coercion from a non-admin user via Windows Store InstallService plugin res…☆86Jun 20, 2026Updated 3 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Another BYOVD process killer. works on all EDR's. fully signed.☆285May 19, 2026Updated last month
- .NET CLR-Stomping☆146May 20, 2026Updated last month
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 3 years ago
- Source code for complete MALicious softWARE books I & II☆80Oct 10, 2025Updated 9 months ago
- sigreturn-oriented(SROP) based sleep obfuscation poc for Linux☆68Dec 15, 2025Updated 7 months ago
- A modern alternative Web-UI for the Mythic Command and Control Server☆79Jul 3, 2026Updated last week
- Rusty DoublePulsar - Cobalt Strike User-Defined Reflective Loader (UDRL) in Rust (Codename: DoublePulsar)☆113May 14, 2026Updated 2 months ago