Alternatives and similar repositories for ss-tun:

Users that are interested in ss-tun are comparing it to the libraries listed below

• Tw1sm / HTTPS-MalleableC2-Config
  Create Cobalt Strike malleable C2 profiles with HTTPS configs
  ☆18Updated 4 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 2 years ago
• timwhitez / Doge-Persist
  Windows Persistence Collection
  ☆12Updated 4 years ago
• timwhitez / Freeze-Common
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Updated 2 years ago
• rasta-mouse / AsyncSockets
  Example of async client/server sockets in .NET 5
  ☆17Updated 3 years ago
• 0x3rhy / GetClipboard
  Cobalt Strike Get clipboard plugin
  ☆12Updated last year
• Gh057Pr1nc3 / smb_scanner
  Tool scan EternalBlue by golang
  ☆22Updated 5 years ago
• wafinfo / SyscallLoader
  SyscallLoader
  ☆10Updated 3 years ago
• aqeisi / 7-ZipPostExp
  Post-Exploitation script to exfiltrate 7-zip files
  ☆10Updated 2 years ago
• jm33-m0 / go-lpe
  A collection of weaponized LPE exploits written in Go
  ☆52Updated 3 months ago
• ceramicskate0 / BOF-Builder
  C# .Net 5.0 project to build BOF (Beacon Object Files) in mass
  ☆28Updated last year
• CryptoBreach / UnhookPoC
  A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.
  ☆10Updated 3 years ago
• mobdk / Core
  Core bypass Windows Defender and execute any binary converted to shellcode
  ☆43Updated 3 years ago
• audibleblink / xordump
  ☆18Updated 3 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago
• jm33-m0 / CVE-2021-3156
  sudo heap overflow to LPE, in Go
  ☆16Updated 4 years ago
• optiv / CVE-2020-15931
  Netwrix Account Lockout Examiner 4.1 Domain Admin Account Credential Disclosure Vulnerability
  ☆26Updated 4 years ago
• clod81 / loader_process_hollow_copy_in_chunk
  About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
  ☆12Updated 2 years ago
• Gr1mmie / SharpShellCodeObfus
  Caeser Cipher your shellcode!
  ☆20Updated 3 years ago
• Snowming04 / inject_shellcode_message_hook
  inject shellcode into remote process via message hook
  ☆15Updated 4 years ago
• mobdk / WinSpoof
  Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code
  ☆22Updated 2 years ago
• johneiser / MalleableC2Parser
  A library to parse, modify, and implement Malleable C2 profiles
  ☆21Updated 6 years ago
• MaherAzzouzi / VMExploitation
  VM escape (QEMU, VirtualBox, VMware)
  ☆17Updated 3 years ago
• sneakerhax / C2PE
  Red Team C2 and Post Exploitation Code
  ☆36Updated last month
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 3 years ago
• magisterquis / shelloverreversessh
  A little implant which SSH's back with a shell
  ☆38Updated 3 years ago
• jnqpblc / SharpDir
  SharpDir is a simple code set to search both local and remote file systems for files and is compatible with Cobalt Strike.
  ☆27Updated 5 years ago
• jonas-koeritz / amsi
  Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)
  ☆11Updated 3 years ago
• EspressoCake / Aggressor_Scripts
  A compilation of Aggressor/Sleep scripts for operational purposes that I've made.
  ☆11Updated 3 years ago
• misterch0c / BeaconTelegram
  Send message on Telegram when you get a new Cobalt Strike beacon
  ☆21Updated 5 years ago