tlsbollei/KittyLoader external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

tlsbollei/KittyLoader

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tlsbollei/KittyLoader)

Close

tlsbollei / KittyLoaderView on GitHubMore

• External links
• Readme badge

KittyLoader is a highly evasive loader written in C / Assembly

☆258Sep 22, 2025Updated 5 months ago

Alternatives and similar repositories for KittyLoader

Users that are interested in KittyLoader are comparing it to the libraries listed below

• magisterquis / sneaky_remap

  View on GitHub
  A C and Go /proc/pid/maps cloak of invisibilty for shared object files
  ☆21Nov 19, 2025Updated 3 months ago
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated last year
• Teach2Breach / stargate

  View on GitHub
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆104Nov 7, 2025Updated 3 months ago
• tijme / kong-loader

  View on GitHub
  Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…
  ☆64Apr 2, 2025Updated 11 months ago
• zarkones / BloodfangC2

  View on GitHub
  Modern PIC implant for Windows (64 & 32 bit)
  ☆106Jul 23, 2025Updated 7 months ago
• dobin / SuperMega

  View on GitHub
  Stealthily inject shellcode into an executable
  ☆452Oct 19, 2025Updated 4 months ago
• 0xflux / Wyrm

  View on GitHub
  The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.
  ☆460Feb 25, 2026Updated last week
• Mr-Un1k0d3r / DotnetNoVirtualProtectShellcodeLoader

  View on GitHub
  load shellcode without P/D Invoke and VirtualProtect call.
  ☆167Sep 2, 2025Updated 6 months ago
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆230Oct 30, 2025Updated 4 months ago
• tehstoni / cmstp_uac_bypass_bof

  View on GitHub
  ☆15May 30, 2025Updated 9 months ago
• ZephrFish / pyLDAPGui

  View on GitHub
  Python based GUI for browsing LDAP
  ☆180Dec 7, 2025Updated 2 months ago
• 0xflux / Vectored-Exception-Handling-Squared

  View on GitHub
  Vectored Exception Handling Squared
  ☆29Dec 27, 2025Updated 2 months ago
• Meowmycks / koneko

  View on GitHub
  Robust Cobalt Strike shellcode loader with multiple advanced evasion features
  ☆200Apr 21, 2025Updated 10 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution

  View on GitHub
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆154Jul 18, 2025Updated 7 months ago
• RWXstoned / LdrShuffle

  View on GitHub
  Code execution/injection technique using DLL PEB module structure manipulation
  ☆221Jun 4, 2025Updated 9 months ago
• Teach2Breach / moonwalk

  View on GitHub
  find dll base addresses without PEB WALK
  ☆160Jul 13, 2025Updated 7 months ago
• AlionGreen / BasicLDR

  View on GitHub
  BasicLDR: A Reflective DLL Loader
  ☆14Jun 11, 2024Updated last year
• Friends-Security / RedirectThread

  View on GitHub
  Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
  ☆199Jun 17, 2025Updated 8 months ago
• ghost-ng / slinger

  View on GitHub
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆57Jan 14, 2026Updated last month
• nixpal / shellsilo

  View on GitHub
  SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…
  ☆154Aug 4, 2025Updated 6 months ago
• grayhatkiller / wambam-bof

  View on GitHub
  ☆48Dec 5, 2025Updated 2 months ago
• TierZeroSecurity / killerPID-BOF

  View on GitHub
  BOF to terminate a process via PID as argument
  ☆28Sep 7, 2025Updated 5 months ago
• EricEsquivel / OpsLoader

  View on GitHub
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Sep 25, 2024Updated last year
• hasherezade / waiting_thread_hijacking

  View on GitHub
  Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread
  ☆264Aug 31, 2025Updated 6 months ago
• 0xsch1zo / NullGate

  View on GitHub
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆166Jul 30, 2025Updated 7 months ago
• ricardojoserf / NativeTokenImpersonate

  View on GitHub
  Impersonate Tokens using only NTAPI functions
  ☆84Apr 4, 2025Updated 11 months ago
• boku7 / patchwerk

  View on GitHub
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆195Feb 6, 2025Updated last year
• 0xTriboulet / InlineExecuteEx

  View on GitHub
  A BOF that's a BOF Loader and more
  ☆198Jan 17, 2026Updated last month
• EvilBytecode / Ebyte-Syscalls

  View on GitHub
  Obfuscating function calls using Vectored Exception Handlers by redirecting execution through exception-based control flow. Uses byte swa…
  ☆116Oct 30, 2025Updated 4 months ago
• EricEsquivel / Inline-EA

  View on GitHub
  Cobalt Strike BOF for evasive .NET assembly execution
  ☆308Mar 31, 2025Updated 11 months ago
• almounah / orsted

  View on GitHub
  Orsted C2 Framework
  ☆114Feb 9, 2026Updated 3 weeks ago
• sensepost / shellnot

  View on GitHub
  Pseudo-shell for RCE scenarios: tunnels commands via /tmp sockets to a local daemon, keeps context, no bind or reverse shell needed.
  ☆43Jun 12, 2025Updated 8 months ago
• tdeerenberg / InlineWhispers3

  View on GitHub
  Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion
  ☆102Jul 9, 2025Updated 7 months ago
• joaoviictorti / hypnus

  View on GitHub
  Sleep Obfuscation in Rust
  ☆279Dec 1, 2025Updated 3 months ago
• jdu2600 / EtwTi-FluctuationMonitor

  View on GitHub
  Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections
  ☆169May 17, 2023Updated 2 years ago
• TwoSevenOneT / WSASS

  View on GitHub
  This is the tool to dump the LSASS process on modern Windows 11
  ☆557Nov 1, 2025Updated 4 months ago
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆124Jan 17, 2026Updated last month
• zarkones / OnionC2

  View on GitHub
  C2 writen in Rust & Go powered by Tor network.
  ☆152Oct 30, 2025Updated 4 months ago
• NtDallas / Ulfberht

  View on GitHub
  Shellcode loader
  ☆101Nov 24, 2024Updated last year