Pseudo-shell for RCE scenarios: tunnels commands via /tmp sockets to a local daemon, keeps context, no bind or reverse shell needed.
☆45Jun 12, 2025Updated 11 months ago
Alternatives and similar repositories for shellnot
Users that are interested in shellnot are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆36Jan 23, 2025Updated last year
- ☆38Apr 15, 2025Updated last year
- Indirect syscalls + DInvoke made simple.☆97Dec 24, 2024Updated last year
- ☆10Jul 1, 2023Updated 2 years ago
- Solving CAPTCHA with Image Classification☆10Mar 13, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- PowerShell implementation for AD CS☆158Mar 2, 2026Updated 3 months ago
- A small How-To on creating your own weaponized WSL file☆128Jul 23, 2025Updated 10 months ago
- Dump processes over WMI with MSFT_MTProcess☆85Feb 13, 2026Updated 3 months ago
- ☆13Dec 29, 2022Updated 3 years ago
- KittyLoader is a highly evasive loader written in C / Assembly☆264Sep 22, 2025Updated 8 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆196Feb 6, 2025Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆195Nov 27, 2024Updated last year
- Sleep obfuscation☆274Dec 13, 2024Updated last year
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆270Nov 22, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Remote DLL Injection with Timer-based Shellcode Execution☆214Jul 18, 2025Updated 10 months ago
- ☆164May 5, 2025Updated last year
- General Purpose OpSec Server☆114Mar 13, 2026Updated 2 months ago
- Random BOFs for LDAP tradecraft☆74Sep 9, 2025Updated 9 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆168Jul 30, 2025Updated 10 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 11 months ago
- Demo code JavaScript POC that tricks user into sending Windows hash to responder☆37Dec 12, 2025Updated 5 months ago
- FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loadi…☆434Apr 18, 2026Updated last month
- Detect public repository dependencies in the GitHub repositories with an orphan required library.☆24Jun 24, 2025Updated 11 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Automating the MITM attack on WSUS☆366Apr 3, 2026Updated 2 months ago
- Rust Weaponization for Red Team Engagements.☆12Nov 14, 2022Updated 3 years ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆401Sep 26, 2025Updated 8 months ago
- Released presentations of my talks + code that used during these talks☆15Sep 5, 2024Updated last year
- A POC to disable TamperProtection and other Defender / MDE components☆256Jun 6, 2024Updated 2 years ago
- Vulnerabilities advisories and PoC☆23May 19, 2026Updated 2 weeks ago
- early cascade injection PoC based on Outflanks blog post, in rust☆63Nov 8, 2024Updated last year
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆65Jun 23, 2025Updated 11 months ago
- NailaoLoader: Hiding Execution Flow via Patching☆23Feb 27, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.☆297May 2, 2025Updated last year
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆151Feb 10, 2025Updated last year
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆53May 16, 2025Updated last year
- Synthetic data for object detection and segmentation☆14Oct 5, 2023Updated 2 years ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆173Jul 31, 2025Updated 10 months ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆149Jul 2, 2025Updated 11 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆251Jun 11, 2024Updated last year