Alternatives and similar repositories for nysm

Users that are interested in nysm are comparing it to the libraries listed below

• lexfo / sshimpanzee
  SSHD Based implant supporting tunneling mecanisms to reach the C2 (DNS, ICMP, HTTP Encapsulation, HTTP/Socks Proxies, UDP...)
  ☆281Updated 9 months ago
• RickdeJager / cupshax
  ☆233Updated last year
• SkyperTHC / curlshell
  reverse shell using curl
  ☆217Updated 10 months ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆190Updated last year
• MatheuZSecurity / RingReaper
  Linux post-exploitation agent that uses io_uring to stealthily bypass EDR detection by avoiding traditional syscalls.
  ☆352Updated 3 months ago
• BishopFox / cve-2024-21762-check
  Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762
  ☆105Updated last year
• hackerschoice / hackshell
  Make BASH stealthy and hacker friendly with lots of bash functions
  ☆289Updated last week
• hackerschoice / ttyinject
  Get root via TTY / TIOCSTI stuffing
  ☆76Updated 7 months ago
• BishopFox / CVE-2023-3519
  RCE exploit for CVE-2023-3519
  ☆229Updated 2 years ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆300Updated 2 years ago
• IncludeSecurity / c2-vulnerabilities
  PoCs of RCEs against open source C2 servers
  ☆88Updated last year
• ThrynSec / CVE-2023-32629-CVE-2023-2640---POC-Escalation
  Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640
  ☆106Updated 2 years ago
• exploits-forsale / themebleed
  Proof-of-Concept for CVE-2023-38146 ("ThemeBleed")
  ☆202Updated 2 years ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆246Updated last month
• watchtowrlabs / Citrix-Virtual-Apps-XEN-Exploit
  Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE
  ☆197Updated last year
• f1zm0 / hades
  Go shellcode loader that combines multiple evasion techniques
  ☆387Updated 2 years ago
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆135Updated 6 months ago
• SafeBreach-Labs / EDRaser
  EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…
  ☆371Updated last year
• BlWasp / rs-shell
  A dirty PoC for a reverse shell with cool features in Rust
  ☆188Updated last month
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆257Updated last year
• airbus-seclab / soxy
  A suite of services (SOCKS, FTP, shell, etc.) over Citrix, VMware Horizon and native Windows RDP virtual channels.
  ☆296Updated last month
• f1zm0 / acheron
  indirect syscalls for AV/EDR evasion in Go assembly
  ☆345Updated 2 years ago
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆401Updated 2 years ago
• RedTeamPentesting / resocks
  mTLS-Encrypted Back-Connect SOCKS5 Proxy
  ☆474Updated 2 years ago
• 0xbigshaq / CVE-2025-25257
  FortiWeb CVE-2025-25257 exploit
  ☆63Updated 5 months ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆194Updated last year
• ElJaviLuki / CobaltStrike_OpenBeacon
  Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for secu…
  ☆257Updated last year
• sqrtZeroKnowledge / CVE-2023-23397_EXPLOIT_0DAY
  Exploit for the CVE-2023-23397
  ☆160Updated 2 years ago
• h4x0r-dz / CVE-2024-21762
  out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability
  ☆143Updated last year
• b3rito / peeko
  peeko – Browser-based XSS C2 for stealthy internal network exploration via infected browser.
  ☆220Updated 8 months ago