A cross-platform C++ framework for building Windows shellcode
☆172Apr 21, 2026Updated 2 weeks ago
Alternatives and similar repositories for scfw
Users that are interested in scfw are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆132Nov 17, 2025Updated 5 months ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆128Dec 23, 2025Updated 4 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆79Sep 8, 2025Updated 7 months ago
- Linux Process Injection via Seccomp Notifier☆95Dec 9, 2025Updated 4 months ago
- Implementing Ghostly-Hollowing using tampered syscalls for remote PE injection☆74Dec 26, 2025Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Evasion by machine code de-optimization.☆425Jul 22, 2024Updated last year
- Windows Access token manipulation tool made in C#☆25Aug 24, 2025Updated 8 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆33Sep 24, 2025Updated 7 months ago
- ☆55Mar 26, 2025Updated last year
- Admin to Kernel code execution using the KSecDD driver☆265Apr 19, 2024Updated 2 years ago
- Allocation-free move-only alternative to std::function for C++17☆13Feb 6, 2021Updated 5 years ago
- A unique introduction to native runtime obfuscation.☆76Mar 2, 2025Updated last year
- Compile-time Evaluable SHA3 in C++: Permutation-based Cryptographic Hashing☆16Mar 22, 2026Updated last month
- Adaptix C2 agent using Crystal Palace PIC linker and PICO module system☆80Mar 7, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Find jmp gadgets for call stack spoofing.☆81Oct 1, 2025Updated 7 months ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆16Sep 4, 2020Updated 5 years ago
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆33Dec 31, 2025Updated 4 months ago
- ☆61Apr 20, 2026Updated 2 weeks ago
- Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution☆132Dec 24, 2025Updated 4 months ago
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 4 months ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆26Apr 24, 2022Updated 4 years ago
- takes shellcode bad-bytes and banishes them, returning cleaned shellcode with preserved functionalities☆62Mar 1, 2026Updated 2 months ago
- Tools for attacking Computer Use Agents☆30Jan 16, 2026Updated 3 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- ☆85Feb 12, 2026Updated 2 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆63Nov 8, 2024Updated last year
- Proof of Concepts code for Bring Your Own Vulnerable Driver techniques☆219Aug 21, 2025Updated 8 months ago
- Finding Truth in the Shadows☆127Jan 26, 2023Updated 3 years ago
- ☆17Oct 31, 2022Updated 3 years ago
- tests to catch some sloppy hv impls☆36Mar 16, 2026Updated last month
- PoC code for IsValidImageCRC()☆22May 3, 2023Updated 3 years ago
- Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries☆685Mar 24, 2026Updated last month
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆113Feb 18, 2024Updated 2 years ago
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆58Jul 13, 2025Updated 9 months ago
- A Windows Named Pipe Multi-tool / Proxy☆326Dec 7, 2025Updated 4 months ago
- ☆57Apr 19, 2023Updated 3 years ago
- A modern 32/64-bit position independent implant template☆1,320Mar 21, 2025Updated last year
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆203Jun 17, 2025Updated 10 months ago
- Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.☆630Feb 2, 2026Updated 3 months ago