Create-Thread-Shellcode-Fetcher
This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver. (by VirtualAlllocEx)
DripLoader
Evasive shellcode loader for bypassing event-based injection detection (PoC) (by xuanxuan0)
| Create-Thread-Shellcode-Fetcher | DripLoader | |
|---|---|---|
| 1 | 6 | |
| 246 | 748 | |
| 0.4% | 4.4% | |
| 3.0 | 1.8 | |
| almost 2 years ago | over 3 years ago | |
| C++ | C++ | |
| - | MIT License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Create-Thread-Shellcode-Fetcher
Posts with mentions or reviews of Create-Thread-Shellcode-Fetcher.
We have used some of these posts to build our list of alternatives
and similar projects.
DripLoader
Posts with mentions or reviews of DripLoader.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-08-18.
- Bypassing EDR real-time injection detection logic
- Does anyone know any good x64 shellcode loaders?
- DripLoader: Evasive shellcode loader for bypassing event-based injection detection
- DripLoader - Evasive shellcode loader for bypassing event-based injection detection
- DripLoader: Evasive shellcode loader for bypassing event-based injection detection, without necessarily suppressing event collection - aiming to highlight limitations of event-driven injection identification, and show the need for more advanced memory scanning/smarter local agent inventories in EDR
What are some alternatives?
When comparing Create-Thread-Shellcode-Fetcher and DripLoader you can also consider the following projects:
Chimera - Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
pe_to_shellcode - Converts PE into a shellcode
AtomPePacker - A Highly capable Pe Packer
MicroBackdoor - Small and convenient C2 tool for Windows targets. [ Русский -- значит нахуй! ]
DInjector - Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
CSharpReflectionWorkshop - The repository that complements the From zero to hero: creating a reflective loader in C# workshop