hillu/go-ntdll

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hillu/go-ntdll)

hillu / go-ntdll

Go interface to NTDLL functions

☆80

Alternatives and similar repositories for go-ntdll

Users that are interested in go-ntdll are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Cracked5pider / kaine-assembly
View on GitHub
a demo module for the kaine agent to execute and inject assembly modules
☆41Aug 28, 2024Updated last year
aus / gopherheaven
View on GitHub
Go implementation of the Heaven's Gate technique
☆102Feb 11, 2021Updated 5 years ago
awgh / rawreader
View on GitHub
Implements io.ReaderAt over raw memory.
☆13Jun 26, 2020Updated 5 years ago
C-Sto / BananaPhone
View on GitHub
It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)
☆527Oct 12, 2022Updated 3 years ago
timwhitez / Doge-RL
View on GitHub
Reflective DLL injection Execution
☆20Sep 9, 2022Updated 3 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
parzel / GoBofRunner
View on GitHub
A BOF/COFF loader implemented in Go and CGO.
☆23Jan 16, 2024Updated 2 years ago
audibleblink / dllexical
View on GitHub
easy dll proxying in go
☆14Apr 24, 2022Updated 3 years ago
MaorSabag / fileSearcher
View on GitHub
A simple BOF (Beacon Object File) to search files in the system
☆16Dec 2, 2023Updated 2 years ago
Dliv3 / cve-2019-1040-scanner
View on GitHub
☆12Oct 9, 2020Updated 5 years ago
zodiacon / JobExplorer
View on GitHub
Explore Job Objects on a Windows system
☆82Sep 4, 2019Updated 6 years ago
yanghaoi / 360SecuritySandboxEscape
View on GitHub
Proofs-Of-360Security Sandbox Escape
☆10Mar 18, 2022Updated 4 years ago
emperorcow / go-netscan
View on GitHub
☆33Aug 14, 2020Updated 5 years ago
joaoviictorti / coffeeldr
View on GitHub
A COFF Loader written in Rust
☆141Dec 1, 2025Updated 4 months ago
0x9ef / golang-uacbypasser
View on GitHub
Windows UAC bypass techniques implemented and written in Go
☆215Mar 27, 2022Updated 4 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
secur30nly / go-self-delete
View on GitHub
Go implementation of the self-deletion of an running executable from disk
☆113Jun 6, 2023Updated 2 years ago
audibleblink / getsystem
View on GitHub
Small utility package for manipulating Windows process tokens
☆26Apr 26, 2022Updated 3 years ago
C-Sto / goWMIExec
View on GitHub
Really stupid re-implementation of invoke-wmiexec
☆218Feb 25, 2023Updated 3 years ago
The-Z-Labs / cli4bofs
View on GitHub
A swiss army knife tool for running, injecting and organizing your BOFs collection
☆72Apr 8, 2026Updated last week
KnicKnic / native-powershell
View on GitHub
A C DLL that can control powershell
☆51Dec 13, 2019Updated 6 years ago
Mantraufo / KanonSys
View on GitHub
Bypass Windows defender syscall
☆18Jul 17, 2021Updated 4 years ago
xrombar / flower
View on GitHub
a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
☆109Mar 25, 2024Updated 2 years ago
RTS-Framework / Gleam-RT
View on GitHub
A runtime for developing large-scale and complex shellcode.
☆22Mar 31, 2026Updated 2 weeks ago
N7WEra / BofAllTheThings
View on GitHub
Creating a repository with all public Beacon Object Files (BoFs)
☆627Mar 2, 2026Updated last month
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
neox41 / go-smbshell
View on GitHub
Proof of concept SMB C2 using named pipes in Golang
☆25Sep 8, 2019Updated 6 years ago
Ne0nd0g / go-clr
View on GitHub
A PoC package for hosting the CLR and executing .NET from Go
☆78Jul 9, 2024Updated last year
x64dbg / lz4
View on GitHub
☆13Dec 26, 2024Updated last year
timwhitez / Doge-DumpMem
View on GitHub
dump lsass
☆37May 24, 2022Updated 3 years ago
EspressoCake / Self_Deletion_BOF
View on GitHub
BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
☆185Oct 3, 2021Updated 4 years ago
BC-SECURITY / DeathStarPlugin
View on GitHub
Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common …
☆20Mar 24, 2025Updated last year
No-Github / Archive
View on GitHub
用于备份一些软件安装包
☆13Jan 22, 2026Updated 2 months ago
Binject / go-donut
View on GitHub
Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
☆364Sep 8, 2022Updated 3 years ago
timwhitez / memmod
View on GitHub
Fork & modify of Wireguard's Memmod
☆34Aug 2, 2023Updated 2 years ago
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
code-scan / DirGo
View on GitHub
Dirfuzz by golang
☆15Feb 28, 2023Updated 3 years ago
kyleavery / pendulum
View on GitHub
Linux Sleep Obfuscation
☆115Jan 7, 2024Updated 2 years ago
Kudaes / Shelter
View on GitHub
ROP-based sleep obfuscation to evade memory scanners
☆380Jun 22, 2025Updated 9 months ago
Ne0nd0g / go-coff
View on GitHub
Load and execute a common object file format (COFF) in the current process
☆30Mar 9, 2024Updated 2 years ago
Real-Cryillic / Sarla
View on GitHub
It's what all the kids are talking about
☆12Apr 25, 2023Updated 2 years ago
huoji120 / white_patch_detect
View on GitHub
通杀检测基于白文件patch黑代码的免杀技术的后门
☆181Aug 3, 2024Updated last year
0x4d5a-ctf / 38c3_com_talk
View on GitHub
Slides for COM Hijacking AV/EDR Talk on 38c3
☆75Jan 3, 2025Updated last year