Alternatives and similar repositories for Shelltropy

Users that are interested in Shelltropy are comparing it to the libraries listed below

• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆220Updated 3 years ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆227Updated 2 years ago
• sailay1996 / CdpSvcLPE
  Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)
  ☆255Updated 3 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆291Updated 2 years ago
• kleiton0x00 / RemoteShellcodeExec
  Execute shellcode from a remote-hosted bin file using Winhttp.
  ☆239Updated 2 years ago
• nettitude / ShellcodeMutator
  ☆246Updated 3 years ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆298Updated 2 years ago
• klezVirus / NimlineWhispers3
  A tool for converting SysWhispers3 syscalls for use with Nim projects
  ☆147Updated 3 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆196Updated 3 years ago
• VirtualAlllocEx / Create-Thread-Shellcode-Fetcher
  This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…
  ☆257Updated 2 years ago
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆301Updated 3 years ago
• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆182Updated 2 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆337Updated last year
• eladshamir / RPC-Backdoor
  A basic emulation of an "RPC Backdoor"
  ☆243Updated 3 years ago
• SaadAhla / UnhookingPatch
  Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime
  ☆312Updated 2 years ago
• codewhitesec / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆232Updated 3 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆196Updated 3 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆151Updated 2 years ago
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆372Updated 3 years ago
• MythicAgents / Athena
  ☆213Updated last month
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 3 years ago
• VirtualAlllocEx / Direct-Syscalls-A-journey-from-high-to-low
  Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…
  ☆144Updated 2 years ago
• SaadAhla / PE-Obfuscator
  PE obfuscator with Evasion in mind
  ☆214Updated 2 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆147Updated 2 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆157Updated 3 years ago
• Wh04m1001 / CVE-2023-29343
  ☆161Updated 2 years ago
• Wh04m1001 / SysmonEoP
  ☆184Updated 3 years ago
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆177Updated 3 years ago
• boku7 / Ninja_UUID_Runner
  Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!
  ☆449Updated 2 years ago
• trustedsec / SliverKeylogger
  ☆167Updated 2 years ago