Threadless shellcode injection tool
☆68Aug 5, 2024Updated last year
Alternatives and similar repositories for PartyLoader
Users that are interested in PartyLoader are comparing it to the libraries listed below
Sorting:
- Poshito is a Windows C2 over Telegram☆21Oct 30, 2024Updated last year
- Your Windows syscall hooking factory - feat Canterlot's Gate - All accessible over MCP☆127Mar 14, 2026Updated last week
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆63Mar 19, 2024Updated 2 years ago
- Automated .NET AppDomain hijack payload generation☆129Feb 4, 2025Updated last year
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆85Jul 11, 2025Updated 8 months ago
- Indirect syscalls + DInvoke made simple.☆95Dec 24, 2024Updated last year
- ☆24Feb 1, 2025Updated last year
- Dynamically resolve API function addresses at runtime in a secure manner.☆73Nov 11, 2025Updated 4 months ago
- Heap encryption in Nim☆20Aug 25, 2024Updated last year
- Spawn SYSTEM shells like a PRO!☆10Mar 8, 2023Updated 3 years ago
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- malware written for educational purposes☆71Dec 31, 2025Updated 2 months ago
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆144Mar 16, 2024Updated 2 years ago
- Just another ntdll unhooking using Parun's Fart technique☆76Feb 15, 2023Updated 3 years ago
- An interactive shell to spoof some LOLBins command line☆188Jan 27, 2024Updated 2 years ago
- Rootkit for the blue team. Sophisticated and optimized LKM to detect and prevent malicious activity☆34Apr 26, 2024Updated last year
- Nim process hollowing loader☆62Jul 22, 2025Updated 7 months ago
- Bypass LSA protection using the BYODLL technique☆172Sep 21, 2024Updated last year
- Modified versions of the Cobalt Strike Process Injection Kit☆106Jan 24, 2024Updated 2 years ago
- Lateral Movement via the .NET Profiler☆100Nov 21, 2024Updated last year
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆385Apr 26, 2025Updated 10 months ago
- Call Stack Spoofing for Rust☆212Jan 28, 2026Updated last month
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- ☆101Oct 7, 2023Updated 2 years ago
- early cascade injection PoC based on Outflanks blog post☆239Nov 7, 2024Updated last year
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆190Mar 4, 2024Updated 2 years ago
- Persist like a Dodder☆68May 19, 2025Updated 10 months ago
- ☆126Sep 1, 2024Updated last year
- ☆108Aug 21, 2024Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆283Sep 18, 2024Updated last year
- Self delete DLL (2)☆14Feb 15, 2024Updated 2 years ago
- Section-based payload obfuscation technique for x64☆64Aug 8, 2024Updated last year
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆211Jun 10, 2024Updated last year
- ☆18Feb 29, 2024Updated 2 years ago
- Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread☆264Aug 31, 2025Updated 6 months ago
- Mythic C2 Agent written in x64 PIC C☆84Jan 29, 2025Updated last year
- Enable or Disable TokenPrivilege(s)☆15May 17, 2024Updated last year
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- ☆218Mar 26, 2024Updated last year