Alternatives and similar repositories for DLL-Sideload

Users that are interested in DLL-Sideload are comparing it to the libraries listed below

• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated 2 years ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆54Updated 2 years ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆56Updated 2 years ago
• dosxuz / PerunsFart
  This is my own implementation of the Perun's Fart technique by Sektor7
  ☆71Updated 3 years ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆73Updated 3 months ago
• nick-frischkorn / SysWhispers-FunctionRandomizer
  Quick python script to replace the NtAPI functions within SysWhispers' assembly and header files with random strings
  ☆27Updated 3 years ago
• smokeme / asar-backdoor
  ☆30Updated 3 months ago
• EspressoCake / DLL-Exports-Extraction-BOF
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆82Updated 3 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 3 years ago
• fin3ss3g0d / HookFinder
  Simple PoC to locate hooked functions by EDR in ntdll.dll
  ☆38Updated 2 years ago
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆28Updated 2 years ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆45Updated 2 years ago
• Allevon412 / BreadManModuleStomping
  ☆43Updated last year
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69Updated 2 years ago
• EspressoCake / BOF_NativeAPI_Definitions-VSCode
  A VSCode plugin to assist with BOF development.
  ☆37Updated 11 months ago
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆36Updated 2 years ago
• waawaa / AMSI_Rubeus_bypass
  ☆70Updated 2 years ago
• OffenseTeacher / Steganim
  ☆47Updated 2 years ago
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆29Updated 3 years ago
• Quack2332 / Simple-.NET-Obfuscator-PoC
  ☆20Updated last year
• Orange-Cyberdefense / EDRSnowblast
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆23Updated last year
• Ap3x / COFF-Loader
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆53Updated last year
• hlldz / misc
  miscellaneous codes
  ☆35Updated last year
• dobin / antniumui
  The Web UI for Antnium
  ☆27Updated 3 years ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆55Updated 7 months ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆54Updated 5 years ago
• jsecu / ElevatedEvents
  ☆30Updated 2 years ago
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆85Updated 2 years ago