ph3n1x007/EarlyBirdNTDLL external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ph3n1x007/EarlyBirdNTDLL

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ph3n1x007/EarlyBirdNTDLL)

Close

ph3n1x007 / EarlyBirdNTDLLView on GitHubMore

• External links
• Readme badge

☆37Feb 11, 2023Updated 3 years ago

Alternatives and similar repositories for EarlyBirdNTDLL

Users that are interested in EarlyBirdNTDLL are comparing it to the libraries listed below

• RixedLabs / IDLE-Abuse

  View on GitHub
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆55Apr 4, 2023Updated 2 years ago
• rkbennett / pyThreadlessInject

  View on GitHub
  A python port of CCob's ThreadlessInject
  ☆25Mar 18, 2023Updated 2 years ago
• 0xthirteen / PerfExec

  View on GitHub
  ☆79Aug 2, 2023Updated 2 years ago
• bitsadmin / dir2json

  View on GitHub
  Tool for efficient directory enumeration
  ☆64Jan 27, 2026Updated last month
• D4rthMaulCop / DarthNetLoader

  View on GitHub
  ☆15Aug 17, 2023Updated 2 years ago
• rbmm / DirectSysCall

  View on GitHub
  ☆12Jul 2, 2023Updated 2 years ago
• susMdT / fictional-invention

  View on GitHub
  idk man this was the default github name
  ☆35Apr 23, 2023Updated 2 years ago
• Allevon412 / ReflectiveDLLInjector

  View on GitHub
  This program is used to perform reflective DLL Injection to a remote process specified by the user.
  ☆64Jul 11, 2023Updated 2 years ago
• OtterHacker / CoffLoader

  View on GitHub
  ☆60Jan 9, 2023Updated 3 years ago
• mr-r3bot / bof-modules

  View on GitHub
  BOF for C2 framework
  ☆44Nov 9, 2024Updated last year
• vysecurity / Nemesis-Download-Watcher

  View on GitHub
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆15Feb 29, 2024Updated 2 years ago
• Neo-Maoku / KillDriverProtect

  View on GitHub
  关闭恶意驱动的文件和注册表保护
  ☆14Jun 28, 2022Updated 3 years ago
• outflanknl / unmanaged-dotnet-patch

  View on GitHub
  Modify managed functions from unmanaged code
  ☆53Feb 1, 2024Updated 2 years ago
• darksh3llRU / dark-doh

  View on GitHub
  ☆19Dec 12, 2023Updated 2 years ago
• BambiZombie / ThreadlessSpawn

  View on GitHub
  A Simple PoC
  ☆22May 24, 2024Updated last year
• x0reaxeax / PageSplit

  View on GitHub
  Splitting and executing shellcode across multiple pages
  ☆103Jun 8, 2023Updated 2 years ago
• slyd0g / SharpCryptUnprotectData

  View on GitHub
  ☆15Feb 9, 2022Updated 4 years ago
• Yaxser / Itaskhandler

  View on GitHub
  Implementation of ITaskHandler in C++
  ☆14Feb 11, 2023Updated 3 years ago
• WKL-Sec / GregsBestFriend

  View on GitHub
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆204Jun 23, 2023Updated 2 years ago
• florylsk / SignatureGate

  View on GitHub
  Weaponized HellsGate/SigFlip
  ☆203Jun 7, 2023Updated 2 years ago
• Kryp7os / SharpRBCD

  View on GitHub
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆49Mar 10, 2025Updated 11 months ago
• knight0x07 / BumbleCrypt

  View on GitHub
  A Bumblebee-inspired Crypter
  ☆79Dec 5, 2022Updated 3 years ago
• susMdT / effective-waffle

  View on GitHub
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69May 11, 2023Updated 2 years ago
• EspressoCake / ReadRemoteProcessCommandline_BOF

  View on GitHub
  ☆29May 10, 2024Updated last year
• xforcered / BOFMask

  View on GitHub
  ☆129Jun 28, 2023Updated 2 years ago
• BeetleChunks / Obligato

  View on GitHub
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆108Sep 22, 2023Updated 2 years ago
• rasta-mouse / PPEnum

  View on GitHub
  Simple BOF to read the protection level of a process
  ☆118May 10, 2023Updated 2 years ago
• persistent-security / hermes-the-messenger

  View on GitHub
  A PoC for achieving persistence via push notifications on Windows
  ☆48Jun 9, 2023Updated 2 years ago
• securifybv / BOFRyptor

  View on GitHub
  ☆123Oct 9, 2023Updated 2 years ago
• 4ndr34z / prenum

  View on GitHub
  ☆29May 16, 2023Updated 2 years ago
• naksyn / ProcessStomping

  View on GitHub
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Dec 16, 2023Updated 2 years ago
• ph3n1x007 / Night_Walker

  View on GitHub
  ☆78Aug 1, 2023Updated 2 years ago
• Dump-GUY / sc2pe

  View on GitHub
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65May 1, 2023Updated 2 years ago
• WKL-Sec / FuncAddressPro

  View on GitHub
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Mar 6, 2024Updated 2 years ago
• wsummerhill / IPv4Fuscation-Encrypted

  View on GitHub
  ☆20Mar 21, 2024Updated last year
• mansk1es / GhostFart

  View on GitHub
  ☆141Jun 21, 2023Updated 2 years ago
• SaadAhla / D1rkLdr

  View on GitHub
  Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscal…
  ☆322Aug 2, 2023Updated 2 years ago
• bananabr / Givemeahand

  View on GitHub
  A PoC tool for exploiting leaked process and thread handles
  ☆32Feb 13, 2024Updated 2 years ago
• VirtualAlllocEx / DSC_SVC_REMOTE

  View on GitHub
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆55May 8, 2023Updated 2 years ago