Alternatives and similar repositories for nanostorm

Users that are interested in nanostorm are comparing it to the libraries listed below

• farfella / in-memory-cpython
  An In-memory Embedding of CPython
  ☆30Updated 4 years ago
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆31Updated 2 years ago
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆51Updated 2 years ago
• Teach2Breach / rust_api_demo
  various methods of making API calls
  ☆19Updated 7 months ago
• rxOred / process-hollowing
  process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread
  ☆30Updated 3 years ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆21Updated 2 years ago
• delivr-to / MailCollector
  A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM
  ☆20Updated 2 months ago
• whokilleddb / funcshenanigans
  A bunch of shenanigans using functions, VEH and more
  ☆34Updated 3 months ago
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆19Updated 7 months ago
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 4 years ago
• vysecurity / OffensiveLAM
  A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…
  ☆26Updated last year
• TierZeroSecurity / killerPID-BOF
  BOF to terminate a process via PID as argument
  ☆26Updated last week
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69Updated 2 years ago
• zimnyaa / inmembof.py
  A small example of loading BOFs in Python with pure reflection
  ☆19Updated 2 years ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆26Updated 5 months ago
• chryzsh / linux_bof
  ELF Beacon Object File (BOF) Template
  ☆19Updated 10 months ago
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆27Updated 5 years ago
• rasta-mouse / KerbApp
  ☆29Updated last year
• Teach2Breach / Red_Team_Rust
  Collection of Rust repos useful for Red Teamers.
  ☆34Updated 2 years ago
• postrequest / donut-rs
  Donut generator in rust.
  ☆28Updated 3 years ago
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆20Updated 4 months ago
• bot984397 / eepy
  ☆36Updated 5 months ago
• vysecurity / Nemesis-Download-Watcher
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆15Updated last year
• Ne0nd0g / go-coff
  Load and execute a common object file format (COFF) in the current process
  ☆30Updated last year
• kyleavery / pendulum
  Linux Sleep Obfuscation
  ☆105Updated last year
• susMdT / clr-thing
  rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.
  ☆17Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated 2 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Updated 3 years ago
• DominicBreuker / SliverSamples
  A collection of sample code used in some experiments with Sliver C2
  ☆14Updated 2 years ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆40Updated 2 years ago