Alternatives and similar repositories for runpe-x64

Users that are interested in runpe-x64 are comparing it to the libraries listed below

• bot984397 / eepy
  ☆30Updated 2 months ago
• cyndicatelabs / brc4_profile_maker
  An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.
  ☆24Updated last month
• 0xjbb / vehspoof
  Callstack spoofing using a VEH because VEH all the things.
  ☆21Updated 3 months ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 7 months ago
• NoahKirchner / speedloader
  Rust template/library for implementing your own COFF loader
  ☆50Updated 4 months ago
• rbmm / SDD
  Self Delete DLL
  ☆23Updated last year
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 4 years ago
• chryzsh / linux_bof
  ELF Beacon Object File (BOF) Template
  ☆19Updated 7 months ago
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆20Updated last month
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆28Updated 3 months ago
• Slowerzs / CryptDecryptMemory
  ☆30Updated 6 months ago
• rbmm / ARL
  ☆24Updated 4 months ago
• C5Hackr / c_syscalls
  https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.
  ☆31Updated last year
• OffenseTeacher / Steganim
  ☆48Updated 2 years ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆27Updated last year
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 9 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆22Updated last year
• silentwarble / hbin_template
  Post-Ex BOF tooling for Hannibal
  ☆22Updated 7 months ago
• lem0nSec / Dsebler
  Reimplementation of the KExecDD DSE bypass technique.
  ☆48Updated 9 months ago
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year
• EspressoCake / ADIDNS_Parser
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Updated 4 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆61Updated 10 months ago
• houseofint3 / windows-ps-callbacks-experiments
  Files for http://blog.deniable.org/posts/windows-callbacks/
  ☆12Updated 2 years ago
• FalconForceTeam / bof-winrm-plugin-jump
  ☆27Updated 5 months ago
• HulkOperator / CallStackSpoofer
  ☆32Updated 6 months ago
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆25Updated 2 months ago
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆61Updated last year
• zimnyaa / go-internalmonologue
  Get NetNTLMv2 in Go
  ☆12Updated 2 months ago
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆28Updated 5 months ago