A cross-platform C++ framework for building Windows shellcode
☆177Apr 21, 2026Updated last month
Alternatives and similar repositories for scfw
Users that are interested in scfw are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆143Nov 17, 2025Updated 6 months ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆127Dec 23, 2025Updated 5 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆80Sep 8, 2025Updated 9 months ago
- Linux Process Injection via Seccomp Notifier☆95Dec 9, 2025Updated 6 months ago
- Evasion by machine code de-optimization.☆427Jul 22, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Windows Access token manipulation tool made in C#☆25Aug 24, 2025Updated 9 months ago
- Implementing Ghostly-Hollowing using tampered syscalls for remote PE injection☆74Dec 26, 2025Updated 5 months ago
- A bin2bin code virtualizer for x86-64 PE's☆148Jun 6, 2026Updated last week
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆33Sep 24, 2025Updated 8 months ago
- ☆56Mar 26, 2025Updated last year
- Admin to Kernel code execution using the KSecDD driver☆269Apr 19, 2024Updated 2 years ago
- Allocation-free move-only alternative to std::function for C++17☆13Feb 6, 2021Updated 5 years ago
- A unique introduction to native runtime obfuscation.☆75Mar 2, 2025Updated last year
- Compile-time Evaluable SHA3 in C++: Permutation-based Cryptographic Hashing☆16Mar 22, 2026Updated 2 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Find jmp gadgets for call stack spoofing.☆82Oct 1, 2025Updated 8 months ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆16Sep 4, 2020Updated 5 years ago
- A guide to modern exploit development, shellcode, EDR and WAF bypass, and initial Red Team access.☆28Mar 6, 2026Updated 3 months ago
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆34Dec 31, 2025Updated 5 months ago
- ☆69Apr 20, 2026Updated last month
- Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution☆135Dec 24, 2025Updated 5 months ago
- Adaptix C2 agent using Crystal Palace PIC linker and PICO module system☆88Jun 7, 2026Updated last week
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 5 months ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆26Apr 24, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- takes shellcode bad-bytes and banishes them, returning cleaned shellcode with preserved functionalities☆62Mar 1, 2026Updated 3 months ago
- BYOVD: Use 360 WFP driver to block EDR/XDR network connection.☆125Feb 10, 2026Updated 4 months ago
- Tools for attacking Computer Use Agents☆32Jan 16, 2026Updated 4 months ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆64Nov 8, 2024Updated last year
- Proof of Concepts code for Bring Your Own Vulnerable Driver techniques☆226Aug 21, 2025Updated 9 months ago
- Finding Truth in the Shadows☆129Jan 26, 2023Updated 3 years ago
- ☆17Oct 31, 2022Updated 3 years ago
- tests to catch some sloppy hv impls☆36Mar 16, 2026Updated 2 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆85Feb 12, 2026Updated 4 months ago
- PoC code for IsValidImageCRC()☆24May 3, 2023Updated 3 years ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆116Feb 18, 2024Updated 2 years ago
- Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries☆705May 22, 2026Updated 3 weeks ago
- Shellcode injection using the Windows Debugging API☆181Jan 4, 2026Updated 5 months ago
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆58Jul 13, 2025Updated 11 months ago
- ☆57Apr 19, 2023Updated 3 years ago