Alternatives and similar repositories for NoAmci

Users that are interested in NoAmci are comparing it to the libraries listed below

• am0nsec / SharpHellsGate
  C# Implementation of the Hell's Gate VX Technique
  ☆215Updated 5 years ago
• mdsecactivebreach / firewalker
  ☆154Updated 5 years ago
• FuzzySecurity / Dendrobate
  Managed code hooking template.
  ☆133Updated 4 years ago
• riskydissonance / SafetyDump
  Dump stuff without touching disk
  ☆164Updated 5 years ago
• b4rtik / SharpMiniDump
  Create a minidump of the LSASS process from memory
  ☆260Updated 3 years ago
• rvrsh3ll / MSBuildAPICaller
  MSBuild Without MSBuild.exe
  ☆154Updated 4 years ago
• outflanknl / TamperETW
  PoC to demonstrate how CLR ETW events can be tampered.
  ☆190Updated 5 years ago
• karttoon / trigen
  Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.
  ☆204Updated 8 years ago
• b4rtik / ATPMiniDump
  Evading WinDefender ATP credential-theft
  ☆255Updated 5 years ago
• jfmaes / SharpHandler
  ☆185Updated 4 years ago
• WithSecureLabs / ppid-spoofing
  Scripts for performing and detecting parent PID spoofing
  ☆146Updated 5 years ago
• bats3c / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆264Updated 4 years ago
• outflanknl / FindObjects-BOF
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆275Updated 2 years ago
• Mr-Un1k0d3r / Shellcoding
  Shellcoding utilities
  ☆223Updated 4 years ago
• TheWover / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆163Updated 5 years ago
• Kudaes / LOLBITS
  ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …
  ☆218Updated 2 years ago
• matterpreter / SHAPESHIFTER
  Companion PoC for the "Adventures in Dynamic Evasion" blog post
  ☆129Updated 4 years ago
• Barbarisch / forkatz
  credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege
  ☆123Updated 4 years ago
• med0x2e / genxlm
  A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…
  ☆91Updated 6 years ago
• djhohnstein / CSharpSetThreadContext
  C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread
  ☆118Updated 6 years ago
• xforcered / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆247Updated 4 years ago
• rvrsh3ll / SharpCOM
  CSHARP DCOM Fun
  ☆137Updated 6 years ago
• CCob / SylantStrike
  Simple EDR implementation to demonstrate bypass
  ☆182Updated 5 years ago
• slyd0g / UrbanBishopLocal
  A port of FuzzySecurity's UrbanBishop project for inline shellcode execution
  ☆119Updated 5 years ago
• leoloobeek / COMProxy
  PoC for proxying COM objects when hijacking
  ☆212Updated 6 years ago
• n1xbyte / donutCS
  dem sharp donuts
  ☆201Updated 3 years ago
• bats3c / DefensiveInjector
  Shellcode injector using direct syscalls
  ☆123Updated 5 years ago
• frkngksl / Celeborn
  Userland API Unhooker Project
  ☆109Updated 4 years ago
• moohax / xllpoc
  Code Exec via Excel
  ☆88Updated 8 years ago
• Mr-Un1k0d3r / DLLsForHackers
  Dll that can be used for side loading and other attack vector.
  ☆203Updated 5 years ago