Alternatives and similar repositories for chameleon

Users that are interested in chameleon are comparing it to the libraries listed below

• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆152Updated 6 months ago
• whokilleddb / ASPxecute
  Execute shellcode via ASPNET compiler
  ☆60Updated 4 months ago
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆125Updated 7 months ago
• xaitax / NTSleuth
  Comprehensive Windows Syscall Extraction & Analysis Framework
  ☆160Updated 5 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆165Updated 6 months ago
• dis0rder0x00 / DbgNexum
  Shellcode injection using the Windows Debugging API
  ☆164Updated last month
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆138Updated 5 months ago
• dis0rder0x00 / obex
  Obex – Blocking unwanted DLLs in user mode
  ☆280Updated 4 months ago
• OtterHacker / Hooker
  ☆108Updated last year
• warpedatom / OffsetInspect
  PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.
  ☆31Updated last month
• NtDallas / Svartalfheim
  Stage 0
  ☆169Updated last year
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆164Updated 11 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆101Updated last week
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆236Updated 5 months ago
• 0xJs / EnumEDRs
  Enumerate active EDR's on the system
  ☆150Updated 4 months ago
• CodeXTF2 / CustomC2ChannelTemplate
  template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
  ☆101Updated 3 weeks ago
• dis0rder0x00 / stillepost
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆140Updated last month
• rad9800 / byor
  ☆163Updated 7 months ago
• winsecurity / MaleficentVM
  This is practice VM for malware development
  ☆179Updated 2 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 6 months ago
• zero2504 / EDR-GhostLocker
  AppLocker-Based EDR Neutralization
  ☆281Updated last month
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆154Updated 2 months ago
• LeighlinRamsay / GunnerC2
  ☆152Updated 4 months ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆54Updated 8 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆206Updated last year
• voidvxvi / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆136Updated last year
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆125Updated last month
• yo-yo-yo-jbo / commandline_spoofing
  Commandline spoofing on Windows
  ☆92Updated 2 months ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆36Updated last year
• mez-0 / citadel
  A Payload Analysis Framework
  ☆114Updated 3 months ago