Alternatives and similar repositories for nysm

Users that are interested in nysm are comparing it to the libraries listed below

• M01N-Team / HeaderLessPE

  View on GitHub
  ☆244Sep 19, 2023Updated 2 years ago
• icyguider / LatLoader

  View on GitHub
  PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
  ☆307Dec 9, 2023Updated 2 years ago
• Slowerzs / ThievingFox

  View on GitHub
  ☆567Mar 28, 2024Updated last year
• kyleavery / pendulum

  View on GitHub
  Linux Sleep Obfuscation
  ☆107Jan 7, 2024Updated 2 years ago
• naksyn / Embedder

  View on GitHub
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆123May 29, 2024Updated last year
• senzee1984 / InflativeLoading

  View on GitHub
  Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
  ☆325Apr 12, 2024Updated last year
• mlcsec / proctools

  View on GitHub
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆116Jul 17, 2024Updated last year
• D00Movenok / BounceBack

  View on GitHub
  ↕️🤫 Stealth redirector for your red team operation security
  ☆1,064Jul 6, 2025Updated 7 months ago
• skelsec / evilrdp

  View on GitHub
  ☆307Mar 15, 2025Updated 11 months ago
• CodeXTF2 / WindowSpy

  View on GitHub
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆281Feb 24, 2025Updated 11 months ago
• zblurx / dploot

  View on GitHub
  DPAPI looting remotely and locally in Python
  ☆540Oct 7, 2025Updated 4 months ago
• ElliotKillick / LdrLockLiberator

  View on GitHub
  For when DLLMain is the only way
  ☆423Oct 29, 2024Updated last year
• mertdas / SharpLateral

  View on GitHub
  Lateral Movement
  ☆125Nov 14, 2023Updated 2 years ago
• mertdas / PrivKit

  View on GitHub
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆563Jan 20, 2026Updated 3 weeks ago
• g3tsyst3m / elevationstation

  View on GitHub
  elevate to SYSTEM any way we can! Metasploit and PSEXEC getsystem alternative
  ☆381Nov 2, 2023Updated 2 years ago
• JoelGMSec / HTTP-Shell

  View on GitHub
  MultiPlatform HTTP Reverse Shell
  ☆242Dec 31, 2025Updated last month
• BlackSnufkin / NovaLdr

  View on GitHub
  Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
  ☆258Jun 29, 2024Updated last year
• 1N73LL1G3NC3x / Nightmangle

  View on GitHub
  ☆163Sep 26, 2023Updated 2 years ago
• anrbn / GATOR

  View on GitHub
  GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
  ☆89Jun 22, 2024Updated last year
• hackerschoice / bpfhacks

  View on GitHub
  eBPF hacks
  ☆196Dec 12, 2024Updated last year
• f1zm0 / acheron

  View on GitHub
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆365Jun 13, 2023Updated 2 years ago
• ProDefense / Hawk

  View on GitHub
  Golang tool designed to exfiltrate passwords found via the sshd and su services
  ☆26Nov 23, 2025Updated 2 months ago
• bitsadmin / dir2json

  View on GitHub
  Tool for efficient directory enumeration
  ☆65Jan 27, 2026Updated 3 weeks ago
• BlackSnufkin / GhostDriver

  View on GitHub
  yet another AV killer tool using BYOVD
  ☆304Dec 12, 2023Updated 2 years ago
• decoder-it / TokenStealer

  View on GitHub
  ☆162Oct 25, 2023Updated 2 years ago
• 0xTriboulet / Revenant

  View on GitHub
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆389Jul 30, 2024Updated last year
• synacktiv / DLHell

  View on GitHub
  Local & remote Windows DLL Proxying
  ☆170Jun 17, 2024Updated last year
• chvancooten / NimPlant

  View on GitHub
  A light-weight first-stage C2 implant written in Nim (and Rust).
  ☆933Mar 28, 2025Updated 10 months ago
• f1zm0 / hades

  View on GitHub
  Go shellcode loader that combines multiple evasion techniques
  ☆387Jun 21, 2023Updated 2 years ago
• naksyn / Pyramid

  View on GitHub
  a tool to help operate in EDRs' blind spots
  ☆767Dec 2, 2024Updated last year
• JPG0mez / ADCSync

  View on GitHub
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆210Nov 2, 2023Updated 2 years ago
• wh0amitz / KRBUACBypass

  View on GitHub
  UAC Bypass By Abusing Kerberos Tickets
  ☆508Aug 10, 2023Updated 2 years ago
• naksyn / ModuleShifting

  View on GitHub
  Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…
  ☆128Sep 27, 2023Updated 2 years ago
• whokilleddb / BoosterDriver

  View on GitHub
  A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.
  ☆17Dec 12, 2023Updated 2 years ago
• hoodoer / JS-Tap

  View on GitHub
  JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…
  ☆417Jan 31, 2026Updated 2 weeks ago
• 0xEr3bus / PoolPartyBof

  View on GitHub
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆432Dec 21, 2023Updated 2 years ago
• RedTeamPentesting / resocks

  View on GitHub
  mTLS-Encrypted Back-Connect SOCKS5 Proxy
  ☆476Sep 19, 2023Updated 2 years ago
• SpecterOps / Nemesis

  View on GitHub
  An offensive data enrichment pipeline
  ☆914Updated this week
• netero1010 / GhostTask

  View on GitHub
  A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
  ☆612Jan 2, 2025Updated last year