moom825 / XenoStealerLinks
☆48Updated last year
Alternatives and similar repositories for XenoStealer
Users that are interested in XenoStealer are comparing it to the libraries listed below
Sorting:
- EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.☆25Updated this week
- Ransomware written in go, encrypt - decrypt.☆30Updated 5 months ago
- A unique introduction to native runtime obfuscation.☆73Updated 7 months ago
- Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…☆24Updated 4 months ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆79Updated 3 months ago
- Unhook Ntdll.dll, Go & C++.☆29Updated 5 months ago
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…☆59Updated 4 months ago
- Good CLR Host with Native patchless AMSI Bypass☆91Updated 5 months ago
- MacOS Stealer written in Rust. For Legal and Ethical Research Purposes Only.☆19Updated 9 months ago
- Troll TaskManager, and play with it .☆27Updated 2 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆50Updated 4 months ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆72Updated last year
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆83Updated 5 months ago
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…☆44Updated last year
- The best powershell obfuscator ever made☆112Updated 2 months ago
- LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis☆84Updated 7 months ago
- ☆26Updated 11 months ago
- The first open source runtime windows batch and command line deobfuscator☆38Updated last month
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆69Updated last year
- My POC implementation of HVNC (Hidden VNC / Hidden Desktop)☆27Updated 9 months ago
- Nim process hollowing loader☆60Updated 2 months ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆23Updated 5 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆59Updated 5 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆92Updated last year
- Go keylogger for Windows, logging keyboard input to a file using Windows API functions, and it is released under the Unlicense.☆26Updated 5 months ago
- Yandex browser passwords and credit-cards decryption algorithm☆20Updated 6 months ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆29Updated 2 years ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆84Updated last year
- Shellcode loader☆94Updated 10 months ago