awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索Open-source alternativesSelf-hosted software博客网站地图
项目关于How we rank媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

12 个仓库

Awesome GitHub RepositoriesShellcode Generators

Tools for producing architecture-specific machine code payloads for security exploitation.

Distinct from Assembly Injection Interfaces: Distinct from Assembly Injection Interfaces: focuses on generating standalone shellcode payloads rather than runtime injection mechanisms.

Explore 12 awesome GitHub repositories matching operating systems & systems programming · Shellcode Generators. Refine with filters or upvote what's useful.

Awesome Shellcode Generators GitHub Repositories

用 AI 发现最棒的仓库。我们将通过 AI 为您搜索最匹配的仓库。
  • gallopsled/pwntoolsGallopsled 的头像

    Gallopsled/pwntools

    13,271在 GitHub 上查看↗

    Pwntools is a Python-based framework designed for rapid prototyping and automation in binary exploitation, reverse engineering, and security research. It serves as a comprehensive toolkit for interacting with local and remote processes, providing the primitives necessary to manage complex exploit workflows and streamline security analysis tasks. The framework distinguishes itself through its specialized capabilities for binary manipulation and automated exploit construction. It includes dedicated utilities for parsing executable file formats, assembling and disassembling machine code, and gen

    Generates architecture-specific shellcode and machine code for exploit payload construction.

    Pythonassemblybsdcapture-the-flag
    在 GitHub 上查看↗13,271
  • samratashok/nishangsamratashok 的头像

    samratashok/nishang

    9,951在 GitHub 上查看↗

    Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows targets. It functions as a post-exploitation toolkit and payload generator to automate attacks and manage remote targets. The project provides specialized capabilities for bypassing security controls, such as disabling the Antimalware Scan Interface and employing in-memory execution to avoid disk-based detection. It includes a variety of stealthy command and control mechanisms, utilizing non-standard channels like DNS TXT records, ICMP traffic, and webmail for communication a

    Retrieves shellcode from DNS records and executes it in memory to bypass disk-based detection.

    PowerShellactivedirectoryhackinginfosec
    在 GitHub 上查看↗9,951
  • balloonwj/cppguideballoonwj 的头像

    balloonwj/CppGuide

    6,030在 GitHub 上查看↗

    CppGuide is a curated collection of educational resources and practical guides focused on C++ server development, Linux kernel internals, concurrent programming, network protocols, and security exploitation. It provides structured learning paths for backend developers, covering everything from interview preparation to building high-performance network servers and understanding operating system fundamentals. The guide distinguishes itself by offering in-depth, hands-on tutorials that walk through real-world implementations, including building a Redis-like server from scratch, designing custom

    Provides hands-on tutorials for creating trojans by infecting executables, a core security exploitation topic.

    在 GitHub 上查看↗6,030
  • ne0nd0g/merlinNe0nd0g 的头像

    Ne0nd0g/merlin

    5,555在 GitHub 上查看↗

    Merlin 是一个跨平台的命令与控制框架及远程访问工具。它提供了一个用于渗透后协调的服务器和代理系统,利用 HTTP/2 框架进行安全通信,并在多个操作系统上执行命令。 该项目具有内存代码执行引擎,可在进程内直接运行程序集和 shellcode,从而避免将文件写入磁盘。它通过点对点网络实现了去中心化的通信架构,允许代理通过直接绑定或反向连接交换数据。 为了规避检测,该框架包含流量混淆工具,可修改 TLS 指纹并添加可配置的数据包填充以掩盖通信模式。安全性通过加密的代理通信、对称流量加密以及用于身份验证的非对称加密握手来管理。 该系统支持通过命令行界面进行多用户访问协调,从而实现红队基础设施内分布式代理的管理。

    Implements shellcode execution via asynchronous procedure calls to evade detection.

    Go
    在 GitHub 上查看↗5,555
  • thewover/donutTheWover 的头像

    TheWover/donut

    4,461在 GitHub 上查看↗

    Donut is a toolset for loading and executing payloads in memory, featuring a position-independent shellcode generator, an in-memory payload injector, and a .NET assembly loader. It is designed to convert executable files and scripts into shellcode that can be executed within the memory space of a remote process without writing files to disk. The project specializes in security evasion through memory-based patching and payload obfuscation using symmetric block ciphers and compression. It includes a remote payload stager to retrieve encrypted modules from HTTP or DNS servers during runtime, red

    Converts executables and scripts into position-independent shellcode for in-memory execution without file system access.

    C
    在 GitHub 上查看↗4,461
  • skerkour/black-hat-rustskerkour 的头像

    skerkour/black-hat-rust

    4,353在 GitHub 上查看↗

    这是一个进攻性安全工具包和开发框架,用于创建内存安全恶意软件、网络扫描器和有效载荷生成器。它提供了一种开发漏洞利用、Shellcode 和远程访问工具的结构化方法。 该框架通过使用无标准库环境来生成最小化的独立机器码和 Shellcode 而脱颖而出。它还支持将高性能逻辑编译为 WebAssembly,以创建用于社会工程学的欺骗性 Web 界面。 功能领域涵盖通过模糊测试(fuzzing)进行的自动化漏洞发现、多线程和异步网络表面映射,以及自传播蠕虫的开发。该工具包还包括用于保护远程植入物与命令服务器之间流量的端到端加密通信通道实现,以及针对多种操作系统的跨平台二进制编译。

    Produces architecture-specific machine code payloads for security exploitation without standard library dependencies.

    Rustauditbeaconbug-bounty
    在 GitHub 上查看↗4,353
  • x0rz/eqgrpx0rz 的头像

    x0rz/EQGRP

    4,201在 GitHub 上查看↗

    EQGRP 是一个远程访问木马框架和后渗透工具包。它提供了一个集中式命令与控制基础设施,用于部署持久化植入物并管理跨不同操作系统的远程智能体。 该项目包括用于数字取证规避的工具,例如修改系统日志和文件系统时间戳以删除执行痕迹。它具有一个网络拦截系统,用于通过挂钩系统根目录来捕获和重构数据流,以及专为内核权限提升而设计的漏洞利用,以将进程权限提升为管理根权限。 该工具包涵盖了广泛的功能,包括远程代码执行、用于签名规避的 Shellcode 打包,以及移动设备日志和电信记录的渗出与解析。它还提供用于绑定网络端口和浏览解密归档的工具。

    Obscures and compresses payload code to bypass security scanners and fit within specific memory limits.

    Perl
    在 GitHub 上查看↗4,201
  • veil-framework/veilVeil-Framework 的头像

    Veil-Framework/Veil

    4,199在 GitHub 上查看↗

    Veil is a payload generation framework and a suite of tools designed to automate the creation of obfuscated binaries and encoded shellcode. It functions as an anti-virus evasion tool that transforms binary code to bypass security scanners and endpoint detection software. The framework utilizes multi-language payload generation, employing various programming language compilers to create executables that evade signature-based detection. It includes an evasive shellcode encoder to remove forbidden characters and apply obfuscation techniques to hide payload logic. The project covers the generati

    Produces executable files by combining shellcode with language-specific wrappers for direct system execution.

    Pythonantivirusevasionveil
    在 GitHub 上查看↗4,199
  • trustedsec/unicorntrustedsec 的头像

    trustedsec/unicorn

    3,917在 GitHub 上查看↗

    Unicorn 是一个用于生成恶意 HTA 文件、VBA 宏、编码 PowerShell 命令和内存驻留 shellcode 注入框架的工具集合。它提供工具来创建旨在通过绕过安全控制来实现远程代码执行的有效载荷。 该项目专注于通过 VBA 宏和公式武器化 Office 文档、生成 HTA 攻击向量以及创建编码的 PowerShell 有效载荷。它包括一个 shellcode 注入框架,用于包装外部 shellcode 以在系统内存中直接执行。 该工具包涵盖了用于基于证书的文件传输的二进制转 Base64 转换,以及避免基于磁盘检测的方法。它还包括用于 PowerShell 脚本编码和版本降级攻击的功能,以绕过执行策略和安全限制。

    Parses formatted shellcode exports to wrap them into injection commands for direct execution in memory.

    Python
    在 GitHub 上查看↗3,917
  • byt3bl33d3r/offensivenimbyt3bl33d3r 的头像

    byt3bl33d3r/OffensiveNim

    3,033在 GitHub 上查看↗

    OffensiveNim is a red teaming framework and post-exploitation toolkit developed in Nim. It provides a collection of low-level primitives and a Windows API wrapper designed for offensive security operations, including malware development and shellcode loading. The project focuses on evasion and obfuscation through techniques such as API unhooking, direct system calls, and anti-debugging mechanisms. It features diverse payload delivery methods, including reflective binary loading, the execution of .NET assemblies via CLR hosting, and various shellcode injection techniques using fibers, COM obje

    Provides the ability to allocate executable memory and inject shellcode into the current process.

    Nim
    在 GitHub 上查看↗3,033
  • trickster0/offensiverusttrickster0 的头像

    trickster0/OffensiveRust

    2,984在 GitHub 上查看↗

    OffensiveRust is a red team toolkit and malware development kit written in Rust. It serves as an evasion framework and post-exploitation library, providing a collection of offensive security primitives and a Windows API wrapper for interacting with low-level system functions and undocumented APIs. The project focuses on bypassing security software through direct system calls, memory obfuscation, and stealthy payload execution. It implements techniques to defeat static binary analysis via compile-time string encryption and payload obfuscation, while avoiding detection using parent process ID s

    Converts binary payloads into UUID strings to load them into heap memory via system callbacks.

    Rust
    在 GitHub 上查看↗2,984
  • oddcod3/phantom-evasionoddcod3 的头像

    oddcod3/Phantom-Evasion

    1,449在 GitHub 上查看↗

    Phantom-Evasion is a security research framework designed for generating obfuscated payloads and automating post-exploitation tasks during authorized security assessments. It provides a suite of utilities for creating custom executables and libraries intended to test the effectiveness of antivirus and endpoint security detection systems. The framework distinguishes itself through a focus on memory-resident operations, allowing for the execution of encrypted binaries and shellcode directly within system memory. By utilizing techniques such as junk code injection, payload encryption, and remote

    Performs process shellcode injection by executing custom shellcode within local or remote processes using memory allocation and execution techniques.

    Pythonantivirusapkinjectiondynamic-analysis
    在 GitHub 上查看↗1,449
  1. Home
  2. Operating Systems & Systems Programming
  3. Assembly Injection Interfaces
  4. Shellcode Generators

探索子标签

  • .NET Assembly Shellcode GeneratorsConverts .NET assemblies into position-independent shellcode that loads and executes them entirely from memory without writing files to disk. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: specifically targets .NET assemblies as input, not general executables or C source.
  • Binary-to-Shellcode Conversions1 个子标签Converting existing compiled binaries into position-independent shellcode. **Distinct from C-to-Shellcode Conversions:** Covers conversion from existing binaries/scripts, whereas C-to-Shellcode focuses specifically on source-to-shellcode compilation.
  • C-to-Shellcode CompilersTools that transform C source files into position-independent shellcode for in-memory execution. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: specifically compiles from C source rather than writing raw assembly, enabling higher-level payload development.
  • C-to-Shellcode ConversionsTransforms C source files into position-independent shellcode at compile time for in-memory execution. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: focuses specifically on converting C source to shellcode at compile time, not on general shellcode generation tools.
  • DNS Shellcode Execution1 个子标签Execution of machine-code shellcode retrieved through DNS channels. **Distinct from Shellcode Generators:** Specifies the transport (DNS) for shellcode execution, whereas the parent is a general shellcode generator.
  • Executable-to-Shellcode Converters1 个子标签Converts EXE, DLL, VBScript, JScript, and .NET assemblies into position-independent shellcode for in-memory execution. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: specifically converts existing executables and scripts, not raw assembly or C source.
  • Multi-Format Shellcode ExportersExports generated shellcode as C, Ruby, Python, PowerShell, Base64, C#, or hexadecimal source code for integration into various toolchains. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: focuses on exporting shellcode in multiple source code formats, not just generating the binary payload.
  • ObfuscatedGenerates shellcode with encryption and compression applied for stealthy delivery and evasion of static analysis. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: adds encryption and compression layers to the generated shellcode for obfuscation.
  • Polymorphic Payload Generators2 个子标签Tools that produce functionally identical but structurally varied shellcode to evade signature-based detection. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: adds structural variation to evade antivirus signatures, not just raw payload generation.
  • Process Injection Payloads6 个子标签Techniques for inserting shellcode into a running process's address space to hijack or extend behavior. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: focuses on the injection mechanism into a target process rather than generating the payload itself.
  • Programmatic InterfacesC library API and command-line interface for integrating shellcode generation into external tooling and automation workflows. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: focuses on providing a programmatic API for integration, not just a standalone generator tool.
  • Shellcode Injection WrappersUtilities that parse external shellcode and wrap it into executable commands for direct memory injection. **Distinct from Multi-Format Shellcode Exporters:** Distinct from exporters: this imports existing shellcode and wraps it for execution, whereas exporters output shellcode in various formats.
  • Shellcode Payload Compressors1 个子标签Compresses shellcode payloads using aPLib, LZNT1, Xpress, or Xpress Huffman algorithms to reduce module size. **Distinct from Shellcode Generators:** Distinct from Shellcode Generators: focuses on the compression step applied to shellcode payloads, not the generation itself.