Alternatives and similar repositories for GhostShell

Users that are interested in GhostShell are comparing it to the libraries listed below

• JrM2628 / httpworker
  A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…
  ☆90Updated last year
• S12cybersecurity / S12URootkit
  User Mode Windows Rootkit
  ☆63Updated last year
• BlackSnufkin / PT-ToolKit
  Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement
  ☆65Updated 3 years ago
• limbenjamin / ReverseShellDll
  C++ Windows Reverse Shell - Universal DLL Hijack | SSL Encryption | Statically Linked
  ☆88Updated 5 years ago
• IkerSaint / KingHamlet
  Process Ghosting Tool
  ☆174Updated 4 years ago
• CrackerCat / evildll
  Malicious DLL (Reverse Shell) generator for DLL Hijacking
  ☆41Updated 5 years ago
• 34zY / Microsoft-Office-Word-MSHTML-Remote-Code-Execution-Exploit
  CVE-2021-40444
  ☆65Updated 3 years ago
• josh0xA / K55
  Linux x86_64 Process Injection Utility
  ☆59Updated 4 years ago
• Wh04m1001 / IFaultrepElevatedDataCollectionUAC
  ☆133Updated 2 years ago
• xRET2pwn / PickleC2
  PickleC2 is a post-exploitation and lateral movements framework
  ☆96Updated 3 years ago
• jimywork / koadic
  Koadic C3 COM Command & Control - JScript RAT
  ☆45Updated 7 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆140Updated 3 years ago
• d4rk007 / sak1to-shell
  Multi-threaded, multi-os/platform (Linux/Windows) c2 server and Windows reverse TCP shell client both written in C.
  ☆121Updated 3 years ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆217Updated 3 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆239Updated 5 months ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆54Updated last year
• daVinci13 / Exe2shell
  Converts exe to shellcode.
  ☆109Updated last year
• Trackflaw / CVE-2023-23397
  Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.
  ☆125Updated 2 years ago
• exploitblizzard / WindowsMDM-LPE-0Day
  CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day
  ☆50Updated 3 years ago
• d3ranged / sf2
  Antivirus Signature Search Toolkit
  ☆81Updated 2 years ago
• Octoberfest7 / KillDefender
  A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity
  ☆32Updated 2 years ago
• hdks-bug / hermit
  A command and control framework.
  ☆52Updated 6 months ago
• mrd0x / pe2shc-to-cdb
  Convert shellcode generated using pe_2_shellcode to cdb format.
  ☆97Updated 3 years ago
• yashmundra / Shellcode-Encryption
  Encrypting shellcode to Bypass AV
  ☆71Updated 6 years ago
• n0a / meterpreter-av-bypass
  Bypass Windows Defender with py2exe from memory.
  ☆36Updated 3 years ago
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆44Updated 3 years ago
• D00Movenok / goMalleable
  🔎🪲 Malleable C2 profiles parser and assembler written in golang
  ☆66Updated last year
• ZeroMemoryEx / Bypass-Sandbox-Evasion
  Bypass Malware Sandbox Evasion Ram check
  ☆137Updated 2 years ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆127Updated 3 years ago
• quantumcore / maalik
  Feature-rich Post Exploitation Framework with Network Pivoting capabilities.
  ☆98Updated 4 years ago