Pseudo-shell for RCE scenarios: tunnels commands via /tmp sockets to a local daemon, keeps context, no bind or reverse shell needed.
☆46Jun 12, 2025Updated last year
Alternatives and similar repositories for shellnot
Users that are interested in shellnot are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆36Jan 23, 2025Updated last year
- ☆37Apr 15, 2025Updated last year
- Indirect syscalls + DInvoke made simple.☆97Dec 24, 2024Updated last year
- ☆10Jul 1, 2023Updated 2 years ago
- Solving CAPTCHA with Image Classification☆10Mar 13, 2025Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- PowerShell implementation for AD CS☆158Mar 2, 2026Updated 3 months ago
- A small How-To on creating your own weaponized WSL file☆128Jul 23, 2025Updated 11 months ago
- Dump processes over WMI with MSFT_MTProcess☆86Feb 13, 2026Updated 4 months ago
- ☆13Dec 29, 2022Updated 3 years ago
- KittyLoader is a highly evasive loader written in C / Assembly☆264Sep 22, 2025Updated 9 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆196Feb 6, 2025Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆195Nov 27, 2024Updated last year
- Sleep obfuscation☆275Dec 13, 2024Updated last year
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆272Nov 22, 2025Updated 7 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Remote DLL Injection with Timer-based Shellcode Execution☆215Jul 18, 2025Updated 11 months ago
- ☆164May 5, 2025Updated last year
- General Purpose OpSec Server☆114Mar 13, 2026Updated 3 months ago
- Random BOFs for LDAP tradecraft☆74Sep 9, 2025Updated 9 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆168Jul 30, 2025Updated 10 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 11 months ago
- Demo code JavaScript POC that tricks user into sending Windows hash to responder☆37Dec 12, 2025Updated 6 months ago
- FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loadi…☆442Apr 18, 2026Updated 2 months ago
- Detect public repository dependencies in the GitHub repositories with an orphan required library.☆24Jun 19, 2026Updated last week
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Automating the MITM attack on WSUS☆372Jun 22, 2026Updated last week
- Rust Weaponization for Red Team Engagements.☆12Nov 14, 2022Updated 3 years ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆412Sep 26, 2025Updated 9 months ago
- Released presentations of my talks + code that used during these talks☆15Sep 5, 2024Updated last year
- A POC to disable TamperProtection and other Defender / MDE components☆256Jun 6, 2024Updated 2 years ago
- Vulnerabilities advisories and PoC☆23May 19, 2026Updated last month
- early cascade injection PoC based on Outflanks blog post, in rust☆64Nov 8, 2024Updated last year
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆65Jun 23, 2025Updated last year
- NailaoLoader: Hiding Execution Flow via Patching☆24Feb 27, 2025Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆152Feb 10, 2025Updated last year
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆53May 16, 2025Updated last year
- Synthetic data for object detection and segmentation☆14Oct 5, 2023Updated 2 years ago
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.☆299May 2, 2025Updated last year
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆173Jul 31, 2025Updated 10 months ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆149Jul 2, 2025Updated 11 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆251Jun 11, 2024Updated 2 years ago