A simple research-focused AES-based shellcode loader demonstrating in-memory execution and NTAPI techniques to help understand how custom loaders can bypass Windows Defenderβbased detection.
β38Feb 19, 2026Updated last month
Alternatives and similar repositories for shellcoderunner
Users that are interested in shellcoderunner are comparing it to the libraries listed below
Sorting:
- An i686 & x86_64 position independent implant template for Rust π¦β36Jul 6, 2025Updated 8 months ago
- Windows Error Reporting ALPC Elevation of Privilege (CVE-2026-20817) - Proof-of-Concept exploit demonstrating local privilege escalation β¦β90Feb 19, 2026Updated last month
- Bof of RegPwn by MDSecβ72Updated this week
- A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.β75Aug 24, 2025Updated 6 months ago
- A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.β18Jul 15, 2025Updated 8 months ago
- A portable C# utility for enumerating local and remote windows sessionsβ57Jan 1, 2026Updated 2 months ago
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+Sβ¦β116Dec 21, 2025Updated 2 months ago
- Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dllβ51Jun 16, 2025Updated 9 months ago
- A simple website to act as a store for havoc modules and extensionsβ29Jan 20, 2025Updated last year
- Generate low-level commands to exploit the AD easily: learn and control every steps.β65Updated this week
- This repository contains a collection of scripts I use regularly for offensive security-related tasks.β16Mar 9, 2026Updated last week
- a minimalistic winrm client written in pythonβ25Mar 6, 2026Updated 2 weeks ago
- A different approach to writing BOFs in rust.β19Aug 20, 2025Updated 6 months ago
- Impacket pre-compiled binariesβ18Jul 31, 2023Updated 2 years ago
- Impacketβ50Feb 25, 2026Updated 3 weeks ago
- β15Sep 23, 2023Updated 2 years ago
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnosβ¦β43Jan 15, 2026Updated 2 months ago
- Public Archive for CSAW 2024 Qualsβ11Sep 19, 2024Updated last year
- β39Nov 25, 2025Updated 3 months ago
- dcsync bofβ46Feb 13, 2026Updated last month
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpointsβ125Jul 11, 2025Updated 8 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.β57Jan 14, 2026Updated 2 months ago
- Just another EDR killerβ132Jan 21, 2026Updated last month
- A 64-bit, position-independent code reverse TCP shell for Windows β built in Rust.β87Apr 26, 2025Updated 10 months ago
- Umbrella will protect your shellcode from the rain.β31Jun 4, 2025Updated 9 months ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacketβ73May 18, 2020Updated 5 years ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumiβ¦β19Apr 24, 2023Updated 2 years ago
- β26Aug 11, 2025Updated 7 months ago
- β54Oct 6, 2025Updated 5 months ago
- Windows Privilege Escalationβ23Jun 7, 2022Updated 3 years ago
- A slightly more fun way to disable windows defenderβ52May 4, 2025Updated 10 months ago
- Cross platform (Linux / Windows) shellcode packer for CTFs and pentest / red team exams aiming for AV evasion !β116Mar 8, 2026Updated last week
- my own 2fa bypass methodolgyβ27Sep 22, 2023Updated 2 years ago
- Automagically decode DNS Exfiltration queries to convert Blind RCE into proper RCE via Burp Collaboratorβ20Jan 7, 2026Updated 2 months ago
- PowerShell tool to enumerate existing exclusions in Windows Defender as low privileged userβ11Oct 14, 2024Updated last year
- A Pentester's Powershell Clientβ51Nov 23, 2025Updated 3 months ago
- Invoke-SPSI - Simple PowerShell Shellcode Injectorβ37Oct 9, 2025Updated 5 months ago
- A portable bridge between your C2 infrastructure and Discord, built for quick and lightweight operations.β12Jun 3, 2025Updated 9 months ago
- UDC2 implementation that provides an ICMP C2 channelβ116Nov 24, 2025Updated 3 months ago