Alternatives and similar repositories for chameleon

Users that are interested in chameleon are comparing it to the libraries listed below

• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆163Updated 4 months ago
• dis0rder0x00 / obex
  Obex – Blocking unwanted DLLs in user mode
  ☆276Updated 3 months ago
• zero2504 / EDR-GhostLocker
  AppLocker-Based EDR Neutralization
  ☆100Updated last week
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆152Updated 5 months ago
• whokilleddb / ASPxecute
  Execute shellcode via ASPNET compiler
  ☆59Updated 2 months ago
• NtDallas / Svartalfheim
  Stage 0
  ☆167Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆125Updated 5 months ago
• OtterHacker / Hooker
  ☆108Updated last year
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆135Updated 4 months ago
• Shac0x / Wonka
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆151Updated 2 months ago
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆154Updated last month
• wetw0rk / wetw0rk.github.io
  ☆20Updated last month
• warpedatom / OffsetInspect
  PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.
  ☆29Updated last week
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆164Updated 9 months ago
• rad9800 / byor
  ☆157Updated 6 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• dmcxblue / WSL-Payloads
  A small How-To on creating your own weaponized WSL file
  ☆118Updated 5 months ago
• CodeXTF2 / CustomC2ChannelTemplate
  template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
  ☆95Updated 2 weeks ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆50Updated last year
• dmcxblue / Claude-C2
  Utilizng an MCP Server to communicate with your C2
  ☆86Updated 7 months ago
• moiz-2x / CVE-2025-21420_POC
  Proof of Concept CVE-2025-21420 (Windows Disk Cleanup Tool EoP)
  ☆54Updated 6 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆203Updated 9 months ago
• EvilWhales / VPN-BlackBox-Checker
  A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, …
  ☆28Updated 3 weeks ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆122Updated last week
• whokilleddb / hoontr
  A hoontr must hoont
  ☆102Updated 3 weeks ago
• mez-0 / citadel
  A Payload Analysis Framework
  ☆112Updated 2 months ago
• TwoSevenOneT / EDR-Redir
  EDR-Redir : a tool used to redirect the EDR's folder to another location.
  ☆210Updated last month
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated last year
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆101Updated 6 months ago
• Maldev-Academy / MaldevAcademyLdr.2
  RunPE implementation with multiple evasive techniques
  ☆256Updated 3 months ago