Alternatives and similar repositories for BOAZ

Users that are interested in BOAZ are comparing it to the libraries listed below

• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆72Updated 2 years ago
• HulkOperator / AuthStager
  ☆59Updated last year
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆99Updated 8 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆92Updated last year
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆54Updated 3 weeks ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆99Updated last year
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated 2 years ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆39Updated last year
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆27Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆90Updated 8 months ago
• S3N4T0R-0X0 / Hunter
  Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…
  ☆90Updated 8 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆44Updated 2 years ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆54Updated last year
• almounah / go-buena-clr
  Good CLR Host with Native patchless AMSI Bypass
  ☆97Updated 8 months ago
• nickvourd / Mini-Tools
  Custom mini tools during Red Teaming engagements
  ☆18Updated 3 weeks ago
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆75Updated 3 years ago
• rasta-mouse / SpawnWith
  ☆109Updated 10 months ago
• hdks-bug / hermit
  A command and control framework.
  ☆55Updated last year
• entropy-z / EDR_Evasion_101
  Ways to evade EDR hooking using ntdll unhooking and direct syscall.
  ☆24Updated last year
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆120Updated 4 months ago
• NUL0x4C / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆61Updated 7 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 9 months ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆54Updated 7 months ago
• Offensive-Panda / on-disk-detection-bypass
  Direct syscalls Injection to bypass AV/EDR
  ☆12Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆33Updated last year
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆46Updated last year
• brosck / APIHookingDetector
  「⚙️」Detect which native Windows API's (NtAPI) are being hooked
  ☆39Updated last year
• EvilBytecode / Amsi-Patch-Updated-2025
  How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
  ☆25Updated 8 months ago