Alternatives and similar repositories for nysm

Users that are interested in nysm are comparing it to the libraries listed below

• lexfo / sshimpanzee
  SSHD Based implant supporting tunneling mecanisms to reach the C2 (DNS, ICMP, HTTP Encapsulation, HTTP/Socks Proxies, UDP...)
  ☆272Updated 5 months ago
• MatheuZSecurity / RingReaper
  Linux post-exploitation agent that uses io_uring to stealthily bypass EDR detection by avoiding traditional syscalls.
  ☆295Updated this week
• SkyperTHC / curlshell
  reverse shell using curl
  ☆207Updated 6 months ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆187Updated 8 months ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆297Updated last year
• RickdeJager / cupshax
  ☆233Updated 11 months ago
• RedTeamPentesting / resocks
  mTLS-Encrypted Back-Connect SOCKS5 Proxy
  ☆456Updated last year
• BishopFox / CVE-2023-3519
  RCE exploit for CVE-2023-3519
  ☆227Updated 2 years ago
• safedv / RustPotato
  A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…
  ☆305Updated 4 months ago
• hackerschoice / ttyinject
  Get root via TTY / TIOCSTI stuffing
  ☆76Updated 3 months ago
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆258Updated last year
• watchtowrlabs / Citrix-Virtual-Apps-XEN-Exploit
  Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE
  ☆195Updated 9 months ago
• BishopFox / cve-2024-21762-check
  Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762
  ☆103Updated last year
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆231Updated 8 months ago
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆397Updated last year
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆192Updated 11 months ago
• SafeBreach-Labs / EDRaser
  EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…
  ☆372Updated last year
• EgeBalci / evilreplay
  Seamless remote browser session control
  ☆206Updated last month
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆273Updated 11 months ago
• lockness-Ko / xz-vulnerable-honeypot
  An ssh honeypot with the XZ backdoor. CVE-2024-3094
  ☆144Updated last year
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆142Updated 7 months ago
• ThrynSec / CVE-2023-32629-CVE-2023-2640---POC-Escalation
  Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640
  ☆109Updated last year
• h4x0r-dz / CVE-2024-21762
  out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability
  ☆139Updated last year
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆378Updated 2 years ago
• f1zm0 / acheron
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆333Updated 2 years ago
• testanull / MS-SharePoint-July-Patch-RCE-PoC
  ☆158Updated last year
• Chocapikk / CVE-2023-29357
  Microsoft SharePoint Server Elevation of Privilege Vulnerability
  ☆233Updated last year
• quarkslab / proxyblob
  SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.
  ☆245Updated 4 months ago
• 0xbigshaq / CVE-2025-25257
  FortiWeb CVE-2025-25257 exploit
  ☆58Updated last month
• N1k0la-T / CVE-2023-36745
  ☆166Updated last year