Alternatives and similar repositories for obj2shellcode:

Users that are interested in obj2shellcode are comparing it to the libraries listed below

• evilashz / PigSyscall
  An implementation of an indirect system call
  ☆120Updated last year
• coleak2021 / vehsyscall
  vehsyscall:a syscall project that may bypass EDR
  ☆54Updated last year
• bestspear / ReBeacon_ForClang
  Beacon compiled using clang
  ☆63Updated 2 years ago
• Neo-Maoku / Shellcode_Generator
  IDA Python script for generating Windows x86 shellcode with one click
  ☆36Updated last year
• hid3rx / GhostWriting
  ☆30Updated last year
• clownfive / CustomStack
  自定义函数堆栈，从而绕过ETW检测，这个是完整版。
  ☆13Updated 10 months ago
• BeneficialCode / KPPL
  Kill Protected Process Light Process (include av)
  ☆56Updated last year
• evilashz / Visual-Studio-BOF-template
  more conveniently Visual-Studio-BOF-template
  ☆61Updated last year
• HackerCalico / SigLocator
  Efficient RAT signature locator for bypassing AV/EDR, supporting static scanning and memory scanning.
  ☆33Updated 4 months ago
• HackerCalico / RAT_Obfuscator
  Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.
  ☆146Updated 3 months ago
• timwhitez / BinHol
  Binary Hollowing
  ☆70Updated 6 months ago
• howmp / donut_ollvm
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆42Updated 10 months ago
• Ethicalrat / Evasive-Loader
  Evasive loader to bypass static detection
  ☆57Updated last year
• bopin2020 / WindowsCamp
  Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&
  ☆56Updated 2 months ago
• 0x00Check / Amaterasu
  Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…
  ☆71Updated last year
• Neo-Maoku / expandTextSection
  A tool that expands the size of the text section in a PE file without loss, supporting both 32-bit and 64-bit programs.
  ☆29Updated 10 months ago
• huoji120 / APT_Step_Bear_Inject
  复现《EDR的梦魇：Storm-0978使用新型内核注入技术“Step Bear”》
  ☆126Updated 4 months ago
• Neo-Maoku / DllMainHijacking
  Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode
  ☆140Updated 9 months ago
• b4nbird / shellcodeLoaders
  ☆26Updated last year
• huoji120 / numen
  简单安排一下 autochk.sys 这个rootkit
  ☆71Updated 2 years ago
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆46Updated 11 months ago
• idiotc4t / ObfuscationStrings-new
  ☆32Updated 4 years ago
• kyxiaxiang / CrackSleeve4.9
  ☆40Updated last year
• kyxiaxiang / Safetasklist
  Help red teams find opsec processes during engagements
  ☆26Updated 3 months ago
• HadesW / power-kill
  power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
  ☆46Updated 3 years ago
• coleak2021 / PE64shell
  A packer which adds encrypted shell to protect your PE file
  ☆19Updated 3 months ago
• Ryze-T / EdrKiller
  ☆91Updated 3 years ago
• CBLabresearch / PhantomExecution
  Self Cleanup in post-ex job
  ☆49Updated 6 months ago