Alternatives and similar repositories for ReverseShellDll

Users that are interested in ReverseShellDll are comparing it to the libraries listed below

• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass
  AmsiScanBufferBypass using D/Invoke
  ☆135Updated 4 years ago
• bats3c / DefensiveInjector
  Shellcode injector using direct syscalls
  ☆122Updated 5 years ago
• tommelo / lnk2pwn
  Malicious Shortcut(.lnk) Generator
  ☆85Updated 6 years ago
• sailay1996 / SpoolTrigger
  Weaponizing for privileged file writes bugs with PrintNotify Service
  ☆134Updated 3 years ago
• riskydissonance / SafetyDump
  Dump stuff without touching disk
  ☆165Updated 4 years ago
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆43Updated 6 years ago
• decoder-it / NetworkServiceExploit
  POC for NetworkService PrivEsc
  ☆126Updated 5 years ago
• JohnWoodman / stealthInjector
  Injects shellcode into remote processes using direct syscalls
  ☆79Updated 4 years ago
• reevesrs24 / EvasiveProcessHollowing
  Evasive Process Hollowing Techniques
  ☆142Updated 5 years ago
• tomcarver16 / AmsiHook
  AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.
  ☆66Updated 5 years ago
• DamonMohammadbagher / NativePayload_CBT
  NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)
  ☆118Updated 2 years ago
• rxwx / cs-rdll-ipc-example
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆119Updated 5 years ago
• darkr4y / SharpOffensiveShell
  A sort of simple shell which support multiple protocols.
  ☆100Updated 5 years ago
• netbiosX / AMSI-Provider
  A fake AMSI Provider which can be used for persistence.
  ☆151Updated 4 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆130Updated 2 years ago
• notdodo / adduser-dll
  Simple DLL that add a user to the local Administrators group
  ☆78Updated 3 years ago
• asaurusrex / DoppelGate
  DoppelGate relies on reading ntdll on disk to grab syscall stubs, and patches these syscall stubs into desired functions to bypass Userla…
  ☆122Updated 3 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆216Updated 5 years ago
• frkngksl / Celeborn
  Userland API Unhooker Project
  ☆109Updated 4 years ago
• mdsecactivebreach / firewalker
  ☆152Updated 5 years ago
• rmdavy / HeapsOfFun
  AMSI Bypass Via the Heap
  ☆107Updated 4 years ago
• APTortellini / DefenderSwitch
  Stop Windows Defender using the Win32 API
  ☆194Updated 3 years ago
• xct / diaghub
  Loads a custom dll in system32 via diaghub.
  ☆76Updated 5 years ago
• connormcgarr / cThreadHijack
  Beacon Object File (BOF) for remote process injection via thread hijacking
  ☆213Updated 4 years ago
• plackyhacker / Peruns-Fart
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆111Updated 3 years ago
• anthemtotheego / Detect-Hooks
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆159Updated 4 years ago
• plackyhacker / CmdLineSpoofer
  How to spoof the command line when spawning a new process from C#.
  ☆107Updated 3 years ago
• aahmad097 / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆136Updated 4 years ago
• py7hagoras / GetSystem
  This is a C# implementation of making a process/executable run as NT AUTHORITY/SYSTEM. This is achieved through parent ID spoofing of alm…
  ☆109Updated 2 years ago
• phra / x0rro
  A PE/ELF/MachO Crypter for x86 and x86_64 Based on Radare2
  ☆139Updated 2 years ago