zimnyaa / xyrellaView external linksLinks
PoC XLL builder in Python/Nim
☆49Nov 21, 2022Updated 3 years ago
Alternatives and similar repositories for xyrella
Users that are interested in xyrella are comparing it to the libraries listed below
Sorting:
- A simple Nim stager (w/ fiber execution)☆20Jan 31, 2022Updated 4 years ago
- Unused DLL hollowing PoC in Nim☆17Jan 31, 2022Updated 4 years ago
- ☆46Jun 21, 2023Updated 2 years ago
- A python port of CCob's ThreadlessInject☆25Mar 18, 2023Updated 2 years ago
- Excel Add In Payload Generator☆14Oct 9, 2023Updated 2 years ago
- Indirect syscalls + DInvoke made simple.☆96Dec 24, 2024Updated last year
- Example of using Sleep to create better named pipes.☆41Jul 25, 2023Updated 2 years ago
- ☆57Apr 19, 2023Updated 2 years ago
- Splitting and executing shellcode across multiple pages☆103Jun 8, 2023Updated 2 years ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆63Mar 19, 2024Updated last year
- Bloodhound agent for Mythic☆24Apr 19, 2025Updated 9 months ago
- An In-memory Embedding of CPython☆31May 24, 2021Updated 4 years ago
- Deobfuscation of XorStringsNet☆14Nov 5, 2024Updated last year
- A simple BOF that disables some logging with NtSetInformationProcess☆13Oct 13, 2023Updated 2 years ago
- Enable or Disable TokenPrivilege(s)☆15May 17, 2024Updated last year
- ShellcodeFluctuation PoC ported to Nim☆79Oct 14, 2022Updated 3 years ago
- ☆131Dec 4, 2023Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- A small example of loading BOFs in Python with pure reflection☆19Jan 26, 2023Updated 3 years ago
- Encode shellcode into dictionary words for evasion and entropy reduction☆40Dec 12, 2025Updated 2 months ago
- ☆83Nov 1, 2023Updated 2 years ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆162Jul 14, 2025Updated 7 months ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆86Apr 15, 2025Updated 10 months ago
- Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).☆187Feb 12, 2023Updated 3 years ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- Extension functionality for the NightHawk operator client☆26Nov 3, 2023Updated 2 years ago
- Nemesis agent for Mythic☆28Dec 11, 2025Updated 2 months ago
- ☆25Apr 28, 2024Updated last year
- Your syscall factory☆126Jan 13, 2026Updated last month
- ☆122Oct 9, 2023Updated 2 years ago
- ☆151Oct 2, 2023Updated 2 years ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆160Mar 1, 2024Updated last year
- Running .NET from VBA☆148Feb 11, 2023Updated 3 years ago
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- ☆31Jul 26, 2024Updated last year
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆186Mar 4, 2024Updated last year
- Generate AES128 and AES256 Kerberos keys from a given username, password, and realm☆18Sep 18, 2024Updated last year
- A lexer and parser for Sleep☆20May 14, 2025Updated 9 months ago