rbmm/SDD external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

rbmm/SDD

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/rbmm/SDD)

Close

rbmm / SDDView on GitHubMore

• External links
• Readme badge

Self Delete DLL

☆23Feb 15, 2024Updated 2 years ago

Alternatives and similar repositories for SDD

Users that are interested in SDD are comparing it to the libraries listed below

• rbmm / SDD2

  View on GitHub
  Self delete DLL (2)
  ☆14Feb 15, 2024Updated 2 years ago
• lap1nou / CLR_Heap_encryption

  View on GitHub
  ☆101Oct 7, 2023Updated 2 years ago
• hlldz / misc

  View on GitHub
  miscellaneous codes
  ☆36Sep 24, 2023Updated 2 years ago
• rbmm / DirectSysCall

  View on GitHub
  ☆12Jul 2, 2023Updated 2 years ago
• rbmm / Noname

  View on GitHub
  really ?
  ☆12Feb 29, 2024Updated 2 years ago
• rbmm / ARL

  View on GitHub
  ☆24Feb 1, 2025Updated last year
• antroguy / LocklessBof

  View on GitHub
  Lockless BOF
  ☆79May 2, 2025Updated 9 months ago
• thiagopeixoto / mystique-self-injection

  View on GitHub
  An improvement and a different approach to Mockingjay Self-Injection.
  ☆35May 21, 2024Updated last year
• fin3ss3g0d / IoDllProxyLoad

  View on GitHub
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆63Mar 19, 2024Updated last year
• c3r3br4t3 / ShadowRDP

  View on GitHub
  ☆75Feb 4, 2024Updated 2 years ago
• rbmm / Hollowed-Process

  View on GitHub
  ☆30Aug 24, 2025Updated 6 months ago
• LloydLabs / process-enumeration-stealth

  View on GitHub
  ☆84Aug 26, 2024Updated last year
• fin3ss3g0d / NativeThreadpool

  View on GitHub
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Feb 11, 2024Updated 2 years ago
• Cracked5pider / CodeCave

  View on GitHub
  A bunch of scripts and code i wrote.
  ☆149Nov 7, 2024Updated last year
• EspressoCake / BOF_Development_Docker

  View on GitHub
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆50Jul 10, 2023Updated 2 years ago
• CompassSecurity / TokenPhisher

  View on GitHub
  ☆26Feb 11, 2025Updated last year
• outflanknl / unmanaged-dotnet-patch

  View on GitHub
  Modify managed functions from unmanaged code
  ☆53Feb 1, 2024Updated 2 years ago
• xforcered / BOFMask

  View on GitHub
  ☆129Jun 28, 2023Updated 2 years ago
• blackarrowsec / Handly

  View on GitHub
  Abuse leaked token handles.
  ☆136Dec 14, 2023Updated 2 years ago
• xpn / CloudInject

  View on GitHub
  ☆121Nov 21, 2024Updated last year
• connormcgarr / tgtdelegation

  View on GitHub
  tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"
  ☆178Nov 26, 2021Updated 4 years ago
• mastercodeon314 / NugetBackdoor

  View on GitHub
  A framework for backdooring Microsoft Nuget packages.
  ☆10Jan 9, 2024Updated 2 years ago
• med0x2e / vba2clr

  View on GitHub
  Running .NET from VBA
  ☆148Feb 11, 2023Updated 3 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 2 years ago
• pwn1sher / RTImplant

  View on GitHub
  Just another casual shellcode native loader
  ☆25Feb 3, 2022Updated 4 years ago
• caueb / ThreadlessStompingKann

  View on GitHub
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆79Dec 23, 2023Updated 2 years ago
• Octoberfest7 / enumhandles_BOF

  View on GitHub
  ☆126Sep 1, 2024Updated last year
• zimnyaa / inmembof.py

  View on GitHub
  A small example of loading BOFs in Python with pure reflection
  ☆19Jan 26, 2023Updated 3 years ago
• pard0p / PICO-Implant

  View on GitHub
  PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…
  ☆43Nov 9, 2025Updated 3 months ago
• kapellos / LNKSmuggler

  View on GitHub
  A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
  ☆92Jan 8, 2025Updated last year
• EspressoCake / Defender-Exclusions-Creator-BOF

  View on GitHub
  ☆83Nov 1, 2023Updated 2 years ago
• mlcsec / ASRenum-BOF

  View on GitHub
  Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
  ☆160Mar 1, 2024Updated 2 years ago
• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• ph3n1x007 / Night_Walker

  View on GitHub
  ☆78Aug 1, 2023Updated 2 years ago
• WKL-Sec / FuncAddressPro

  View on GitHub
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Mar 6, 2024Updated last year
• jojonas / SharpSAMDump

  View on GitHub
  SAM Dumping in C#
  ☆54Nov 27, 2025Updated 3 months ago
• wotwot563 / aad_prt_bof

  View on GitHub
  ☆159Apr 17, 2024Updated last year
• okppp990 / phishlets

  View on GitHub
  ☆11Jul 11, 2023Updated 2 years ago
• Tw1sm / list-wam-accounts

  View on GitHub
  List web account manager (WAM) accounts added to the current profile
  ☆22Dec 11, 2025Updated 2 months ago