killvxk/awesome_shell_loaders

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/killvxk/awesome_shell_loaders)

killvxk / awesome_shell_loaders

shellcode-loaders and beacon-loaders

☆72

Alternatives and similar repositories for awesome_shell_loaders

Users that are interested in awesome_shell_loaders are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

reveng007 / reveng_loader
View on GitHub
C# loader capable of running stage-1 from remote url, file path as well as file share
☆15Feb 8, 2023Updated 3 years ago
killvxk / awesome-obfuscations
View on GitHub
☆76Jul 22, 2025Updated 9 months ago
NewWorldComingSoon / OAC
View on GitHub
Open Anti Cheat
☆27Jul 16, 2022Updated 3 years ago
HookR0 / AcDrv
View on GitHub
anti cheat drv open source
☆19Apr 18, 2024Updated 2 years ago
irohaneABC / ShellCodeBuildandloadexe
View on GitHub
这是一个shellcode简单的示例demo，使目标exe程序转换为shellcode可执行程序的一个demo【并不打算后期维护】，两年前写的，我发现被工作磨平了对技术的探索，今天翻到发现的。
☆11Sep 23, 2023Updated 2 years ago
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
GeorgePatsias / PayloadFactory
View on GitHub
C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
☆37Dec 20, 2021Updated 4 years ago
killvxk / POCS
View on GitHub
May the POC be with you
☆66Feb 21, 2026Updated 2 months ago
zhuhuibeishadiao / JunkDriveOpenSource
View on GitHub
Some garbage drivers written for getting started
☆65Dec 31, 2019Updated 6 years ago
ntoskrnl7 / ldk
View on GitHub
Load Dll into Kernel space
☆39Aug 23, 2022Updated 3 years ago
y11en / BabyBypass
View on GitHub
看起来叫BabyBypass，实际啥都会记一些
☆16Sep 10, 2023Updated 2 years ago
Wra7h / PEResourceInject
View on GitHub
☆61Jun 26, 2022Updated 3 years ago
FULLSHADE / Auto-Elevate
View on GitHub
Escalate from a low-integrity Administrator account to NT AUTHORITY\SYSTEM without an LPE exploit by combining a COM UAC bypass and Token…
☆163Dec 19, 2021Updated 4 years ago
Hagrid29 / PELoader
View on GitHub
PE loader with various shellcode injection techniques
☆450Oct 17, 2022Updated 3 years ago
XShar / Super_Hide_String
View on GitHub
Скрытие строки от отладчиков и декомпиляторов
☆51Oct 16, 2019Updated 6 years ago
Simple, predictable pricing with DigitalOcean hosting • Ad
Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
evilashz / PigSyscall
View on GitHub
An implementation of an indirect system call
☆132Aug 25, 2023Updated 2 years ago
killvxk / awesome-C2
View on GitHub
C2
☆149Dec 29, 2025Updated 4 months ago
smallzhong / hide_execute_memory
View on GitHub
隐藏可执行内存
☆268Apr 27, 2025Updated last year
timwhitez / Doge-Gabh
View on GitHub
GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…
☆332Sep 10, 2024Updated last year
mai1zhi2 / ShellCodeFramework
View on GitHub
绕3环的shellcode免杀框架
☆574Mar 19, 2021Updated 5 years ago
fadetrack / KernelMemoryModule
View on GitHub
☆14Jul 28, 2018Updated 7 years ago
wilszdev / GetTrustedInstallerShell
View on GitHub
impersonate trustedinstaller by fiddling with tokens
☆17Aug 30, 2021Updated 4 years ago
Mantraufo / KanonSys
View on GitHub
Bypass Windows defender syscall
☆18Jul 17, 2021Updated 4 years ago
gmh5225 / CallMeWin32kDriver
View on GitHub
Load your driver like win32k.sys
☆258Aug 20, 2022Updated 3 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
Cracked5pider / KaynStrike
View on GitHub
UDRL for CS
☆444Dec 3, 2023Updated 2 years ago
Alien177 / WINAPI
View on GitHub
☆11Jun 24, 2024Updated last year
saucer-man / chrome_get_cookie
View on GitHub
利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html
☆15Sep 9, 2021Updated 4 years ago
XaFF-XaFF / Shellcodev
View on GitHub
Shellcodev is a tool designed to help and automate the process of shellcode creation.
☆114Oct 11, 2023Updated 2 years ago
hasherezade / transacted_hollowing
View on GitHub
Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
☆582Mar 8, 2024Updated 2 years ago
Octoberfest7 / MemFiles
View on GitHub
A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
☆476Jul 6, 2024Updated last year
Cracked5pider / Ekko
View on GitHub
Sleep Obfuscation
☆836Dec 3, 2023Updated 2 years ago
cs1ime / DICHook
View on GitHub
Hook NtDeviceIoControlFile with PatchGuard
☆107May 10, 2022Updated 3 years ago
S3cur3Th1sSh1t / Nim-RunPE
View on GitHub
A Nim implementation of reflective PE-Loading from memory
☆301Sep 5, 2024Updated last year
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
antonioCoco / SspiUacBypass
View on GitHub
Bypassing UAC with SSPI Datagram Contexts
☆466Sep 24, 2023Updated 2 years ago
aaaddress1 / knownDlls_Poison
View on GitHub
☆27Dec 29, 2021Updated 4 years ago
MastMind / PE-infector
View on GitHub
Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)
☆77Dec 22, 2025Updated 4 months ago
amitschendel / venom-rootkit
View on GitHub
A simple Windows kernel rootkit.
☆93May 13, 2025Updated 11 months ago
kyleavery / AceLdr
View on GitHub
Cobalt Strike UDRL for memory scanner evasion.
☆1,014Jun 4, 2024Updated last year
Al1ex / Alibab-Nacos-Unauthorized-Login
View on GitHub
Alibab Nacos Unauthorized Login
☆14Mar 16, 2023Updated 3 years ago
hfiref0x / AsIo3Unlock
View on GitHub
ASUSTeK AsIO3 I/O driver unlock
☆23Apr 22, 2021Updated 5 years ago