Alternatives and similar repositories for XenoStealer

Users that are interested in XenoStealer are comparing it to the libraries listed below

• JayGLXR / MacOS-Stealer-in-Rust
  MacOS Stealer written in Rust. For Legal and Ethical Research Purposes Only.
  ☆26Updated 11 months ago
• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆30Updated 7 months ago
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• C5Hackr / Eclipse
  A unique introduction to native runtime obfuscation.
  ☆74Updated 9 months ago
• EvilBytecode / TaskMgr-Troll
  Troll TaskManager, and play with it .
  ☆28Updated 4 months ago
• EvilBytecode / EByte-Pattern-AmsiPatch
  Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…
  ☆27Updated 7 months ago
• EvilBytecode / Ebyte-AMSI-ProxyInjector
  A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…
  ☆61Updated 6 months ago
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆119Updated 4 months ago
• internetangel / ZeroCrumb
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆161Updated 6 months ago
• furax124 / Protect_Loader
  A fucking real shellcode loader with a GUI. Work-in-Progress.
  ☆80Updated 5 months ago
• hwbp / LazyHook
  Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.
  ☆72Updated this week
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆69Updated last year
• arsium / BypassUAC
  A rework of CMLuaUtil AutoElevated
  ☆27Updated 3 years ago
• vvswift / Bypass-Protection0x00
  EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.
  ☆46Updated 3 weeks ago
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆72Updated 2 years ago
• almounah / go-buena-clr
  Good CLR Host with Native patchless AMSI Bypass
  ☆98Updated 7 months ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆60Updated 4 months ago
• NUL0x4C / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆60Updated 7 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆84Updated last year
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆54Updated 7 months ago
• Chainski / PandaCrypter
  PandaCrypter is a C#-based tool designed to convert PowerShell scripts into obfuscated batch files (.bat) with encryption and additional …
  ☆40Updated 3 months ago
• C5Hackr / Segment-Encryption
  ☆26Updated last year
• maxDcb / C2Implant
  Windows C++ Implant for Exploration C2
  ☆44Updated last week
• EvilBytecode / ExitPatcher
  Prevent in-process process termination by patching exit APIs
  ☆62Updated last month
• ProcessusT / UnhookingDLL
  This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…
  ☆70Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆88Updated 7 months ago
• EvilBytecode / Ntdll-Unhook
  Unhook Ntdll.dll, Go & C++.
  ☆32Updated 7 months ago
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆50Updated 6 months ago
• C5Hackr / PEB-Redirection
  ☆12Updated last year
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆44Updated last year