Alternatives and similar repositories for mbnsc

Users that are interested in mbnsc are comparing it to the libraries listed below

• NPC2000 / elf_to_shellcode
  将任何 elf 或命令转换为 shellcode
  ☆54Updated last year
• miunasu / NativeThreadRobber
  Using DLL sideloading to hijack the exe main thread before starting it! 使用dll侧载在exe程序主线程启动之前劫持主线程。
  ☆26Updated 5 months ago
• huoji120 / white_patch_detect
  通杀检测基于白文件patch黑代码的免杀技术的后门
  ☆179Updated last year
• yj94 / Anti-Sandbox
  ☆70Updated last year
• huoji120 / APT_Step_Bear_Inject
  复现《EDR的梦魇：Storm-0978使用新型内核注入技术“Step Bear”》
  ☆157Updated last year
• kaliworld / easybypassdemo
  ☆47Updated last year
• aeverj / RTDllHijack
  dll劫持、dll hijack、Bypass Antivirus、Red Team
  ☆56Updated last year
• baimao-box / Self-Defective-Program
  无Windows API的新型恶意程序：自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究，A new type of malicious program without Windows API
  ☆88Updated 8 months ago
• yj94 / Yj_learning
  天问之路
  ☆40Updated 3 months ago
• yutianqaq / x1Ldr
  XOR 加密 分离免杀
  ☆67Updated 2 years ago
• merlinxcy / memory_execute_golang_elf
  内存加载执行golang elf二进制文件
  ☆28Updated 4 years ago
• y11en / schtask-bypass
  免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
  ☆73Updated 3 years ago
• Symph0nia / Maestro
  Multilingual backdoor
  ☆65Updated last year
• masterqiu01 / cross-file-obfuscator
  Go 代码混淆工具，使用 AST (抽象语法树) 技术实现跨文件的代码混淆，同时保证混淆后的代码可编译和可执行。
  ☆165Updated last month
• 1y0n / AVKiller
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆137Updated 2 years ago
• Esonhugh / sliver-stage-helper
  Let sliver use msf payload!
  ☆24Updated 9 months ago
• 9bie / iatHijackGenerate
  白加黑的快速生成器（针对IAT类型）
  ☆111Updated 3 years ago
• Sndav / coffee
  Coffee is a loader for ELF (Executable and Linkable Format) object files written in Rust. Coffee是一个用Rust语言编写的ELF object文件的加载器
  ☆63Updated last year
• kaliworld / whitefrp
  这是一个带白签名的frp，可用于规避所有杀软和流量检测
  ☆29Updated last year
• gh0stkey / FuncExporter
  IDA Plugin exports all pseudocode at once for easy search and analysis
  ☆14Updated 2 weeks ago
• BushANQ / Get_AV
  在线安软识别
  ☆12Updated 4 months ago
• miunasu / NTR_loader
  Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术，不使用API进行主线程劫持，不使用PEB…
  ☆87Updated 5 months ago
• coleak2021 / PE64shell
  A packer which adds encrypted shell to protect your PE file
  ☆28Updated last year
• hhuang00 / go-bypass-loader
  go实现的shellcode免杀加载器，实测时可过火绒，360。当前效果请自行评判。
  ☆44Updated last year
• X1r0z / pivot-rs
  A lightweight port-forwarding and socks proxy tool written in Rust 🦀
  ☆50Updated 10 months ago
• 10cks / AC2_DEMO
  自研C2 功能展示。cs+spark的结合体。省去了本地客户端，便于团队操作。后续开源社区版。
  ☆16Updated last year
• Neo-Maoku / expandTextSection
  A tool that expands the size of the text section in a PE file without loss, supporting both 32-bit and 64-bit programs.
  ☆40Updated last year
• George-boop-svg / Chinese-hackers-use-WPS-to-attack
  WPS 0day.hen the wps software is running, an api interface with port 4709 will be opened. An attacker can request this interface to execu…
  ☆96Updated last year
• YanStar / Windows_Hack_Base_Code
  windows黑客编程基础（C\C++）
  ☆44Updated 6 years ago
• evilashz / FRP-0.38-DomainFronting
  域前置版本FRP
  ☆16Updated 3 years ago