Alternatives and similar repositories for Zero-Import-Malware:

Users that are interested in Zero-Import-Malware are comparing it to the libraries listed below

• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆52Updated 5 months ago
• BlackShell256 / ShellGo
  Simple Shellcode Loader tool
  ☆25Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• HulkOperator / AuthStager
  ☆52Updated 3 months ago
• fanbyprinciple / bin2shellcode
  .bin file to shellcode convertor
  ☆32Updated 7 months ago
• ASP4RUX / bypassEDR-AV
  ☆54Updated 3 months ago
• sliverarmory / hashdump
  Dump Windows SAM hashes
  ☆41Updated last year
• watchtowrlabs / watchTowr-vs-progress-moveit_CVE-2024-5806
  Exploit for the CVE-2024-5806
  ☆42Updated 7 months ago
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆79Updated 4 months ago
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆97Updated last year
• DamonMohammadbagher / NativePayload_PE1
  NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…
  ☆58Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆80Updated last year
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆24Updated 4 months ago
• absholi7ly / CVE-2025-0282-Ivanti-exploit
  CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…
  ☆40Updated last month
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆39Updated 8 months ago
• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆41Updated 9 months ago
• syncwithali / HavocExploit
  A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.
  ☆34Updated last year
• almounah / GoDroplets
  Go Shellcode Loader to be Integrated in Exploration C2
  ☆25Updated last week
• 7h3w4lk3r / RexLdr
  Rex Shellcode Loader for AV/EDR evasion
  ☆30Updated 10 months ago
• nettitude / CVE-2024-25153
  Proof-of-concept exploit for CVE-2024-25153.
  ☆41Updated 11 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆85Updated last year
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆47Updated last week
• rasta-mouse / SpawnWith
  ☆93Updated 11 months ago
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆78Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• EQSTLab / CVE-2024-46538
  Proof-of-Concept for CVE-2024-46538
  ☆46Updated last month
• hideckies / hermit
  A command and control framework.
  ☆43Updated last month
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆76Updated 3 months ago