Alternatives and similar repositories for XenoStealer

Users that are interested in XenoStealer are comparing it to the libraries listed below

• x86byte / LummaC2-Stealer
  LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis
  ☆40Updated 3 months ago
• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆21Updated 3 weeks ago
• C5Hackr / Segment-Encryption
  ☆24Updated 6 months ago
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆106Updated last month
• moom825 / CsharpRootkit
  ☆10Updated 8 months ago
• C5Hackr / Phantom
  ☆112Updated 6 months ago
• EvilBytecode / Amsi-Patch-Updated-2025
  How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
  ☆17Updated 3 weeks ago
• Intrus1ve / Runpe-ProcessHollowing
  Fud Runpe Av Evasion / All Av Bypass
  ☆33Updated 2 years ago
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆44Updated last year
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆37Updated this week
• K3rnel-Dev / MisterioLNK
  LNK-Dropper Builder
  ☆22Updated last month
• MpCmdRun / uac-bypass
  ATL.dll and WmiMgmt.msc UAC Bypass
  ☆12Updated 3 weeks ago
• EvilBytecode / Ebyte-AMSI-ProxyInjector
  A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…
  ☆26Updated this week
• EvilBytecode / RubyRedOps
  💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
  ☆10Updated 3 weeks ago
• RATandC2 / VirusTotalC2
  Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , …
  ☆28Updated 2 years ago
• EvilBytecode / EByte-Pattern-AmsiPatch
  Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…
  ☆14Updated this week
• MpCmdRun / 0x0-Crypter
  A Free Open sourced crypter that builds a output .NET .exe Stub (Updated whenever I feel like it)
  ☆14Updated 2 weeks ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆63Updated 3 weeks ago
• EvilBytecode / PayloadCrypter
  Go Based Crypter That Can Bypass Any Kinds Of Antivirus Products, payload crypter supports over 4 programming languages.
  ☆44Updated 3 weeks ago
• C5Hackr / Eclipse
  A unique introduction to native runtime obfuscation.
  ☆12Updated 2 months ago
• w1u0u1 / NanoCore
  NanoCore rat stub source code
  ☆38Updated 2 years ago
• EvilBytecode / Ntdll-Unhook
  Unhook Ntdll.dll, Go & C++.
  ☆22Updated 3 weeks ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆104Updated 2 years ago
• Chainski / Chainski-Crypter
  Lime Crypter Obfuscator Mod
  ☆29Updated 10 months ago
• arsium / BypassUAC
  A rework of CMLuaUtil AutoElevated
  ☆25Updated 2 years ago
• ntdll0 / HVNC
  My POC implementation of HVNC (Hidden VNC / Hidden Desktop)
  ☆23Updated 4 months ago
• EvilBytecode / Keylogger
  Go keylogger for Windows, logging keyboard input to a file using Windows API functions, and it is released under the Unlicense.
  ☆25Updated 3 weeks ago
• Quasar-Continuation / Pulsar
  A continuation of the famous quasar remote administration tool
  ☆142Updated 3 weeks ago
• Ricky5panish / PE-Runtime-Crypter
  A runtime Crypter written in C++ to bypass AVs signature based detection
  ☆30Updated 2 years ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆48Updated last year