Alternatives and similar repositories for building-c2-implants-in-cpp:

Users that are interested in building-c2-implants-in-cpp are comparing it to the libraries listed below

• trustedsec / COFFLoader
  ☆492Updated 3 months ago
• boku7 / HOLLOW
  EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and e…
  ☆273Updated last year
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆352Updated 2 years ago
• SolomonSklash / SleepyCrypt
  A shellcode function to encrypt a running process image when sleeping.
  ☆335Updated 3 years ago
• thefLink / Hunt-Sleeping-Beacons
  Aims to identify sleeping beacons
  ☆562Updated 2 months ago
• trickster0 / TartarusGate
  TartarusGate, Bypassing EDRs
  ☆561Updated 3 years ago
• c0de90e7 / GhostWriting
  GhostWriting Injection Technique.
  ☆166Updated 6 years ago
• Cracked5pider / KaynLdr
  KaynLdr is a Reflective Loader written in C/ASM
  ☆524Updated last year
• MythicAgents / thanatos
  Mythic C2 agent targeting Linux and Windows hosts written in Rust
  ☆327Updated last month
• rad9800 / misc
  miscellaneous scripts and programs
  ☆232Updated 3 weeks ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆282Updated last year
• itm4n / PPLmedic
  Dump the memory of any PPL with a Userland exploit chain
  ☆332Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆321Updated 6 months ago
• lab52io / LeakedHandlesFinder
  Leaked Windows processes handles identification tool
  ☆282Updated 2 years ago
• reevesrs24 / EvasiveProcessHollowing
  Evasive Process Hollowing Techniques
  ☆135Updated 4 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆177Updated 2 years ago
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆632Updated 2 years ago
• ajpc500 / BOFs
  Collection of Beacon Object Files
  ☆569Updated 2 years ago
• rad9800 / WTSRM
  WTSRM
  ☆207Updated 2 years ago
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆580Updated 2 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆112Updated 2 years ago
• antonioCoco / MalSeclogon
  A little tool to play with the Seclogon service
  ☆310Updated 2 years ago
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆165Updated last year
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆347Updated 2 years ago
• wumb0 / rust_bof
  Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.
  ☆257Updated last year
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆453Updated 3 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆247Updated 3 years ago
• rad9800 / TamperingSyscalls
  ☆472Updated 2 years ago
• IkerSaint / KingHamlet
  Process Ghosting Tool
  ☆169Updated 3 years ago
• iilegacyyii / ThreadlessInject-BOF
  BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…
  ☆371Updated last year