zimnyaa/PhaseDive

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/zimnyaa/PhaseDive)

zimnyaa / PhaseDive

Sleep Obfuscation

☆45

Alternatives and similar repositories for PhaseDive

Users that are interested in PhaseDive are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

delivr-to / MailCollector
View on GitHub
A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM
☆20Jul 19, 2025Updated 8 months ago
pruno7 / nEkko
View on GitHub
A nim port of C5pider's Ekko project.
☆17Oct 1, 2022Updated 3 years ago
zimnyaa / LEOPARDSEAL
View on GitHub
A simple Linux in-memory .so loader
☆33Mar 29, 2023Updated 3 years ago
rad9800 / WTSRM2
View on GitHub
☆164Dec 30, 2022Updated 3 years ago
NUL0x4C / ManualRsrcDataFetching
View on GitHub
Get your data from the resource section manually, with no need for windows apis
☆67Oct 22, 2024Updated last year
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
eversinc33 / Godmode
View on GitHub
Tool for playing with Windows Access Token manipulation.
☆82Nov 28, 2022Updated 3 years ago
0xTriboulet / scepter-rs
View on GitHub
A hacky way of getting cross-arch/platform support in Cobalt Strike
☆37Aug 31, 2025Updated 7 months ago
med0x2e / vba2clr
View on GitHub
Running .NET from VBA
☆148Feb 11, 2023Updated 3 years ago
WithSecureLabs / TickTock
View on GitHub
☆113Oct 10, 2022Updated 3 years ago
lap1nou / CLR_Heap_encryption
View on GitHub
☆102Oct 7, 2023Updated 2 years ago
SolomonSklash / SleepyCrypt
View on GitHub
A shellcode function to encrypt a running process image when sleeping.
☆338Sep 11, 2021Updated 4 years ago
enkomio / BrokenFlow
View on GitHub
A simple PoC to invoke an encrypted shellcode by using an hidden call
☆115Nov 19, 2022Updated 3 years ago
Octoberfest7 / JumpSession_BOF
View on GitHub
Beacon Object File allowing creation of Beacons in different sessions.
☆84May 23, 2022Updated 3 years ago
zimnyaa / nim-noload-dll-hollowing
View on GitHub
Unused DLL hollowing PoC in Nim
☆17Jan 31, 2022Updated 4 years ago
Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
NVISOsecurity / Interceptor
View on GitHub
Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space
☆135Jan 2, 2023Updated 3 years ago
FalconForceTeam / BOF2shellcode
View on GitHub
POC tool to convert CobaltStrike BOF files to raw shellcode
☆222Nov 5, 2021Updated 4 years ago
SpikySabra / Kernel-Cactus
View on GitHub
It's pointy and it hurts!
☆126Oct 18, 2022Updated 3 years ago
GetRektBoy724 / DCMB
View on GitHub
Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!
☆250Jul 9, 2024Updated last year
rad9800 / misc
View on GitHub
miscellaneous scripts and programs
☆278Jan 23, 2025Updated last year
joe-desimone / patriot
View on GitHub
☆158Jul 31, 2022Updated 3 years ago
Cracked5pider / CoffeeLdr
View on GitHub
Beacon Object File Loader
☆293Dec 3, 2023Updated 2 years ago
rbmm / LdrpKernel32DllName
View on GitHub
☆90Jun 2, 2024Updated last year
synap5e / onefile_python
View on GitHub
Run python from a single exe
☆36May 1, 2022Updated 3 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
rad9800 / WTSRM
View on GitHub
WTSRM
☆215Aug 7, 2022Updated 3 years ago
whokilleddb / ETWListicle
View on GitHub
List the ETW provider(s) in the registration table of a process.
☆80Sep 20, 2023Updated 2 years ago
moloch-- / denim
View on GitHub
Automated compiler obfuscation for nim
☆137Jun 27, 2022Updated 3 years ago
mdsecactivebreach / DragonCastle
View on GitHub
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
☆303Oct 26, 2022Updated 3 years ago
mochabyte0x / TrampoLatte
View on GitHub
A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow
☆18Jun 26, 2025Updated 9 months ago
Haunted-Banshee / ErebusGate
View on GitHub
ErebusGate for Nim Bypass AV/EDR
☆160Nov 7, 2022Updated 3 years ago
CCob / PinSwipe
View on GitHub
Smart Card PIN swiping DLL
☆78Oct 4, 2020Updated 5 years ago
Wra7h / FlavorTown
View on GitHub
Various ways to execute shellcode
☆510Mar 13, 2024Updated 2 years ago
dr4k0nia / XorStringsNET
View on GitHub
Easy XOR string encryption for NET based binaries
☆139Nov 4, 2023Updated 2 years ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
BlackOfWorld / NtCreateUserProcess
View on GitHub
A small NtCreateUserProcess PoC that spawns a Command prompt.
☆104Aug 25, 2022Updated 3 years ago
bohops / DynamicDotNet
View on GitHub
A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
☆145May 18, 2024Updated last year
Kudaes / Unwinder
View on GitHub
Call stack spoofing for Rust
☆361Feb 7, 2025Updated last year
Idov31 / Jormungandr
View on GitHub
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
☆243Sep 26, 2023Updated 2 years ago
OtterHacker / Cerbere
View on GitHub
☆48Feb 11, 2023Updated 3 years ago
rad9800 / hwbp4mw
View on GitHub
☆277Jan 14, 2023Updated 3 years ago
rad9800 / BloatedHammer
View on GitHub
API Hammering with C++20
☆51Jul 21, 2022Updated 3 years ago