yo-yo-yo-jbo/commandline_spoofing external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

yo-yo-yo-jbo/commandline_spoofing

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/yo-yo-yo-jbo/commandline_spoofing)

Close

yo-yo-yo-jbo / commandline_spoofingView on GitHubMore

• External links
• Readme badge

Commandline spoofing on Windows

☆94Nov 25, 2025Updated 3 months ago

Alternatives and similar repositories for commandline_spoofing

Users that are interested in commandline_spoofing are comparing it to the libraries listed below

• 0xflux / Vectored-Exception-Handling-Squared

  View on GitHub
  Vectored Exception Handling Squared
  ☆29Dec 27, 2025Updated 2 months ago
• Octoberfest7 / ThreadCPUAssignment_POC

  View on GitHub
  A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread
  ☆30Sep 24, 2025Updated 5 months ago
• whokilleddb / funcshenanigans

  View on GitHub
  A bunch of shenanigans using functions, VEH and more
  ☆37Jun 8, 2025Updated 8 months ago
• outflanknl / regcertipy

  View on GitHub
  Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does
  ☆95Jul 3, 2025Updated 8 months ago
• phishingclub / session-sushi

  View on GitHub
  Zero dependency browser extension for handling import of cookies, Microsoft 365 OAuth tokens, and Graph API interactions.
  ☆23Feb 26, 2026Updated last week
• susMdT / SharpIndirectSyscalls

  View on GitHub
  ☆11Feb 12, 2023Updated 3 years ago
• Yeeb1 / MagicBOFs

  View on GitHub
  A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.
  ☆16Jul 15, 2025Updated 7 months ago
• x64dbg / lz4

  View on GitHub
  ☆14Dec 26, 2024Updated last year
• patrickt2017 / VEHNetLoader

  View on GitHub
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆50Jul 6, 2025Updated 8 months ago
• Teach2Breach / rpeloader

  View on GitHub
  use python on windows with full submodule support without installation
  ☆30Jan 23, 2025Updated last year
• 0xRedpoll / SignalKeyBOF

  View on GitHub
  BOF to decrypt Signal Desktop chat logs
  ☆71Feb 20, 2025Updated last year
• xRedCodex / BofArsenal

  View on GitHub
  The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23
  ☆23Jun 19, 2025Updated 8 months ago
• dmcxblue / WSL-Payloads

  View on GitHub
  A small How-To on creating your own weaponized WSL file
  ☆122Jul 23, 2025Updated 7 months ago
• Maldev-Academy / Alphabetfuscation

  View on GitHub
  Convert your shellcode into an ASCII string
  ☆128Jun 27, 2025Updated 8 months ago
• Macmod / flashingestor

  View on GitHub
  A TUI for Active Directory collection.
  ☆112Feb 17, 2026Updated 2 weeks ago
• dazzyddos / ClickOnceBlobber

  View on GitHub
  Weaponize signed .NET ClickOnce applications for initial access by hijacking a dependency DLL via AppDomainManager injection and loading …
  ☆135Feb 14, 2026Updated 2 weeks ago
• lsecqt / SessionView

  View on GitHub
  A portable C# utility for enumerating local and remote windows sessions
  ☆56Jan 1, 2026Updated 2 months ago
• tijme / relocatable

  View on GitHub
  Boilerplate to develop raw and truly Position Independent Code (PIC).
  ☆117Jan 20, 2025Updated last year
• 0xthirteen / rpc2wc

  View on GitHub
  RPC to WebClient startup
  ☆55Aug 19, 2025Updated 6 months ago
• 0xTriboulet / T-70

  View on GitHub
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆42Oct 30, 2024Updated last year
• MythicAgents / Kharon-Mtc

  View on GitHub
  C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…
  ☆199Dec 30, 2025Updated 2 months ago
• entropy-z / PostEx-Arsenal

  View on GitHub
  Arsenal of modules to beacon postex
  ☆94Updated this week
• garrettfoster13 / ldap_bofs

  View on GitHub
  Random BOFs for LDAP tradecraft
  ☆74Sep 9, 2025Updated 5 months ago
• dmcxblue / Claude-C2

  View on GitHub
  Utilizng an MCP Server to communicate with your C2
  ☆86May 15, 2025Updated 9 months ago
• redr0nin / CVE-2024-38143

  View on GitHub
  Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
  ☆24Feb 5, 2025Updated last year
• NtDallas / BOF_Spawn

  View on GitHub
  Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames
  ☆152Nov 23, 2025Updated 3 months ago
• rbmm / SC

  View on GitHub
  shell code example
  ☆68Dec 12, 2025Updated 2 months ago
• Vith0r / Awesome-Malware-Blogs

  View on GitHub
  A large collection of blogs 🦐
  ☆13Apr 12, 2025Updated 10 months ago
• AlmondOffSec / DCOMRunAs

  View on GitHub
  Lateral movement with DCOM DLL hijacking
  ☆176Jul 4, 2025Updated 8 months ago
• LloydLabs / shellcode-plain-sight

  View on GitHub
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆211Nov 12, 2025Updated 3 months ago
• MythicAgents / Xenon

  View on GitHub
  A Mythic agent for Windows written in C
  ☆158Feb 22, 2026Updated last week
• EricEsquivel / OpsLoader

  View on GitHub
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Sep 25, 2024Updated last year
• t1Sh1n4 / mlwr_blogs

  View on GitHub
  collection of blogs about malware development and analysis
  ☆65Dec 2, 2025Updated 3 months ago
• ColeHouston / theHandler-BOF

  View on GitHub
  Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.
  ☆38Aug 5, 2025Updated 7 months ago
• cfs0x / RProxy-LAB

  View on GitHub
  RProxy LAB is intended solely for educational purposes and authorized security testing with EvilGinx / Modlishka / EvilPuppet e.t.c tools
  ☆54Updated this week
• MatheuZSecurity / UnhookingLinuxEdr

  View on GitHub
  Attacking the cleanup_module function of a kernel module
  ☆56Jun 30, 2025Updated 8 months ago
• rasta-mouse / LibTP

  View on GitHub
  Crystal Palace library for proxying Nt API calls via the Threadpool
  ☆100Oct 18, 2025Updated 4 months ago
• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆152Mar 25, 2025Updated 11 months ago
• buldansec / EnableEFS

  View on GitHub
  Enable EFS service as low priv user (PE & BOF)
  ☆21Jul 6, 2025Updated 8 months ago