Alternatives and similar repositories for kong-loader

Users that are interested in kong-loader are comparing it to the libraries listed below

• rasta-mouse / Crystal-Loaders
  A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike
  ☆184Updated 3 months ago
• NtDallas / OdinLdr
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆182Updated 3 weeks ago
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆86Updated last year
• Octoberfest7 / enumhandles_BOF
  ☆126Updated last year
• AlmondOffSec / DCOMRunAs
  Lateral movement with DCOM DLL hijacking
  ☆176Updated 7 months ago
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Updated 6 months ago
• MEhrn00 / boflink
  Linker for Beacon Object Files
  ☆149Updated this week
• mhaskar / FsquirtCPLPoC
  PoC for generating bthprops.cpl module designed to be loaded by Fsquirt.exe LOLBin
  ☆121Updated last month
• Teach2Breach / dll2shell
  converts sRDI compatible dlls to shellcode
  ☆35Updated last year
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆68Updated last year
• 0xTriboulet / rssh-rs
  ☆55Updated 8 months ago
• NtDallas / Ulfberht
  Shellcode loader
  ☆100Updated last year
• Print3M / epic
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆119Updated last month
• susMdT / ForsHops
  ForsHops
  ☆59Updated 10 months ago
• Retr0-code / hash-dumper
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆66Updated 2 years ago
• FalconForceTeam / bof-winrm-client
  ☆123Updated last year
• ghostbyt3 / BYOVDFinder
  Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
  ☆75Updated 6 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆84Updated last year
• klezVirus / RAIWhateverTrigger
  Local SYSTEM auth trigger for relaying - X
  ☆155Updated 6 months ago
• tijme / relocatable
  Boilerplate to develop raw and truly Position Independent Code (PIC).
  ☆116Updated last year
• fern89 / ghostwriting-2
  A process injection technique using only thread context manipulation
  ☆41Updated 2 years ago
• tdeerenberg / InlineWhispers3
  Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion
  ☆99Updated 7 months ago
• HulkOperator / CallStackSpoofer
  ☆61Updated last year
• fin3ss3g0d / IoDllProxyLoad
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆63Updated last year
• pard0p / Remote-BOF-Runner
  Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …
  ☆88Updated last month
• AlmondOffSec / LibTPLoadLib
  Using call gadgets to break the call stack signature used by Elastic on proxying a module load. Provided as a Crystal Palace shared libra…
  ☆73Updated 3 months ago
• CICADA8-Research / TypeLibWalker
  TypeLib persistence technique
  ☆139Updated last year
• kr0tt / EarlyExceptionHandling
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆136Updated 5 months ago
• M1ndo / WerDump
  A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass
  ☆165Updated 4 months ago
• leftp / RegPersist
  a BOF implementation of various registry persistence methods
  ☆95Updated 3 months ago