Alternatives and similar repositories for Shellcode-Encryption

Users that are interested in Shellcode-Encryption are comparing it to the libraries listed below

• icyguider / DumpNParse
  A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0.
  ☆150Updated 3 years ago
• m57 / cobaltstrike_bofs
  My CobaltStrike BOFS
  ☆164Updated 3 years ago
• ChoiSG / UuidShellcodeExec
  PoC for UUID shellcode execution using DInvoke
  ☆157Updated 4 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆241Updated 8 months ago
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆235Updated 3 years ago
• rsmudge / ZeroLogon-BOF
  ☆161Updated 3 years ago
• EncodeGroup / UAC-SilentClean
  New UAC bypass for Silent Cleanup for CobaltStrike
  ☆191Updated 4 years ago
• notsoshant / DCSyncer
  Perform DCSync operation without mimikatz
  ☆148Updated 11 months ago
• iomoath / SharpSpray
  Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.
  ☆131Updated 3 years ago
• passthehashbrowns / SharpRDPThief
  A C# implementation of RDPThief to steal credentials from RDP.
  ☆163Updated 5 years ago
• bigb0sss / Bankai
  Another Go Shellcode Loader using Windows APIs
  ☆141Updated 3 years ago
• Flangvik / SharpProxyLogon
  C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
  ☆252Updated 4 years ago
• n4ll3ec / AggressorSploit
  Collect & Optimize awesome CobaltStrike aggressor scripts, hope to create a All-In-One framework.
  ☆38Updated 5 years ago
• RedSiege / Screenshooter
  C# program to take a full size screenshot or a recording of the user's desktop. Takes in 0-3 flags
  ☆85Updated 5 years ago
• byt3bl33d3r / BOF-Nim
  Cobalt Strike BOF Files with Nim!
  ☆86Updated 3 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆144Updated 3 years ago
• iammaguire / Gotato
  Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.
  ☆114Updated 4 years ago
• py7hagoras / GetSystem
  This is a C# implementation of making a process/executable run as NT AUTHORITY/SYSTEM. This is achieved through parent ID spoofing of alm…
  ☆109Updated 2 years ago
• Hagrid29 / DuplicateDump
  Dumping LSASS with a duplicated handle from custom LSA plugin
  ☆202Updated 3 years ago
• EncodeGroup / BOF-RegSave
  Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File
  ☆211Updated 4 years ago
• S3cur3Th1sSh1t / NamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆146Updated 4 years ago
• ExAndroidDev / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆38Updated 3 years ago
• Kara-4search / HellgateLoader_CSharp
  Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.
  ☆16Updated 3 years ago
• SolomonSklash / SyscallPOC
  Shellcode injection POC using syscalls.
  ☆117Updated 5 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆306Updated last year
• Cobalt-Strike / beacon_health_check
  This aggressor script uses a beacon's note field to indicate the health status of a beacon.
  ☆142Updated 4 years ago
• joshfaust / Simple-Loader
  Windows Defender ShellCode Execution Bypass
  ☆129Updated 5 years ago
• boku7 / whereami
  Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL…
  ☆182Updated 2 years ago
• roberreigada / LsassUnhooker
  Little program written in C# to bypass EDR hooks and dump the content of the lsass process
  ☆61Updated 4 years ago
• outflanknl / Zipper
  Zipper, a CobaltStrike file and folder compression utility.
  ☆225Updated 5 years ago