Alternatives and similar repositories for shellcode:

Users that are interested in shellcode are comparing it to the libraries listed below

• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆17Updated 4 years ago
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• PorLaCola25 / NtCreateUserProcess
  ☆12Updated 4 years ago
• sk3w / beacon-object-files
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Updated 4 years ago
• OffenseTeacher / NimSkrull
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆12Updated last year
• sevagas / MagicLib
  Non organized Cpp code files I used for my research on Windows
  ☆18Updated 4 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 3 years ago
• waldo-irc / UPSInject
  Unamanged PS with Named Pipes
  ☆9Updated 4 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 3 years ago
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆29Updated 2 years ago
• pwn1sher / RTImplant
  Just another casual shellcode native loader
  ☆24Updated 3 years ago
• zimnyaa / stoplooking
  A simple BOF that disables some logging with NtSetInformationProcess
  ☆10Updated last year
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆22Updated 3 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• Adepts-Of-0xCC / SnoopyOwl
  ☆48Updated 3 years ago
• X-C3LL / wfp-reader
  Proof of concept - Covert Channel using Windows Filtering Platform (C#)
  ☆21Updated 3 years ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆35Updated 9 years ago
• klezVirus / LoGiC.NET
  A more advanced free and open .NET obfuscator using dnlib.
  ☆10Updated 2 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 4 years ago
• DanusMinimus / API-Hash
  API hashing written in C to load APIs indirectly using CRC32 hashing
  ☆14Updated 4 years ago
• GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
  A repository filled with ideas to break/detect direct syscall techniques
  ☆27Updated 2 years ago
• Flawww / NtSyscaller
  Manually perform syscalls without going through any external API or DLL.
  ☆18Updated last year
• SolomonSklash / UnhookingPOC
  A small commented POC for removing API hooks placed by AV/EDR.
  ☆34Updated 4 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆24Updated 5 years ago
• crummie5 / Freshycalls_PoC
  A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯
  ☆40Updated 4 years ago
• perturbed-platypus / UEFIWriteCPP
  ☆11Updated 5 years ago
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 4 years ago