rbmm/SC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

rbmm/SC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/rbmm/SC)

Close

rbmm / SCView on GitHubMore

• External links
• Readme badge

shell code example

☆68Dec 12, 2025Updated 5 months ago

Alternatives and similar repositories for SC

Users that are interested in SC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• rbmm / RtlClone

  View on GitHub
  ☆43Feb 18, 2025Updated last year
• Octoberfest7 / Secure_Stager

  View on GitHub
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆195Nov 27, 2024Updated last year
• silentwarble / Hannibal

  View on GitHub
  Mythic C2 Agent written in x64 PIC C
  ☆87Jan 29, 2025Updated last year
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆133Jan 23, 2025Updated last year
• ameenalkerdy / ETWShellcodeLoader

  View on GitHub
  Shellcode Loader Utilizing ETW Events
  ☆66Feb 26, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• rbmm / TL-TASK

  View on GitHub
  ☆19Sep 17, 2025Updated 8 months ago
• Teach2Breach / moonwalk

  View on GitHub
  find dll base addresses without PEB WALK
  ☆163Jul 13, 2025Updated 10 months ago
• EvanMcBroom / sleepy

  View on GitHub
  A lexer and parser for Sleep
  ☆20Feb 20, 2026Updated 3 months ago
• eversinc33 / PSXecute

  View on GitHub
  MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.
  ☆127Dec 6, 2024Updated last year
• tijme / nimplant-beacon-position-independent-c-code

  View on GitHub
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆66Feb 11, 2025Updated last year
• mannyfred / MentalTi

  View on GitHub
  Mentally ill EtwTi parser
  ☆72Jan 11, 2026Updated 4 months ago
• joaoviictorti / uwd

  View on GitHub
  Call Stack Spoofing for Rust
  ☆217Jan 28, 2026Updated 3 months ago
• rbmm / remap

  View on GitHub
  break link between dll and it file on disk
  ☆12Sep 2, 2024Updated last year
• Teach2Breach / byont

  View on GitHub
  bring your own clean ntdll (or other MS dlls)
  ☆29Jul 14, 2025Updated 10 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• racoten / BetterNetLoader

  View on GitHub
  A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints
  ☆127Jul 11, 2025Updated 10 months ago
• gabriellandau / ShadowStackWalk

  View on GitHub
  Finding Truth in the Shadows
  ☆129Jan 26, 2023Updated 3 years ago
• Octoberfest7 / enumhandles_BOF

  View on GitHub
  ☆127Sep 1, 2024Updated last year
• nbaertsch / PoolProxy

  View on GitHub
  Proxy function calls through the thread pool with ease
  ☆31Feb 27, 2025Updated last year
• 0xHossam / HuffLoader

  View on GitHub
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆286Apr 6, 2025Updated last year
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆72Jan 27, 2025Updated last year
• ViperXSecurity / lib-nosa

  View on GitHub
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆123Sep 8, 2024Updated last year
• Archie-osu / PowerHook

  View on GitHub
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆80Apr 13, 2025Updated last year
• boku7 / StringReaper

  View on GitHub
  Reaping treasures from strings in remote processes memory
  ☆287Feb 8, 2025Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• NioZow / bof-collection

  View on GitHub
  ☆21Feb 22, 2025Updated last year
• akamai / Mirage

  View on GitHub
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆107Feb 25, 2025Updated last year
• KnicKnic / native-powershell

  View on GitHub
  A C DLL that can control powershell
  ☆52Dec 13, 2019Updated 6 years ago
• 0xRedpoll / SignalKeyBOF

  View on GitHub
  BOF to decrypt Signal Desktop chat logs
  ☆70Feb 20, 2025Updated last year
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆247Oct 30, 2025Updated 6 months ago
• rbmm / SC_DEMO

  View on GitHub
  ☆128Dec 12, 2025Updated 5 months ago
• outflanknl / macho-loader

  View on GitHub
  Position-independent Reflective Loader for macOS
  ☆126Feb 19, 2026Updated 3 months ago
• MythicAgents / Hannibal

  View on GitHub
  A Mythic Agent written in PIC C.
  ☆204Feb 4, 2025Updated last year
• silentwarble / PIC-Library

  View on GitHub
  A collection of position independent coding resources
  ☆114Nov 15, 2025Updated 6 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆286Sep 18, 2024Updated last year
• 0x4d5a-ctf / 38c3_com_talk

  View on GitHub
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆75Jan 3, 2025Updated last year
• yo-yo-yo-jbo / commandline_spoofing

  View on GitHub
  Commandline spoofing on Windows
  ☆101Nov 25, 2025Updated 5 months ago
• rad9800 / BootExecuteEDR

  View on GitHub
  ☆415Dec 8, 2024Updated last year
• zzhsec / NlsCodeInjectionThroughRegistry

  View on GitHub
  Dll injection through code page id modification in registry. Based on jonas lykk research
  ☆16Jun 18, 2022Updated 3 years ago
• OtterHacker / SetProcessInjection

  View on GitHub
  ☆156Oct 2, 2023Updated 2 years ago
• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆154Mar 25, 2025Updated last year