{"id":26600808,"url":"https://github.com/s3lrius/nimalathatep","last_synced_at":"2026-03-17T21:03:54.680Z","repository":{"id":40606373,"uuid":"501757007","full_name":"S3lrius/Nimalathatep","owner":"S3lrius","description":"Nim Payload Generation","archived":false,"fork":false,"pushed_at":"2023-10-09T19:27:27.000Z","size":649,"stargazers_count":59,"open_issues_count":1,"forks_count":12,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-03-23T18:47:55.740Z","etag":null,"topics":["nim","nim-lang","nimble","offensive-security","red-teaming","runner","shellcode","shellcode-injection","shellcode-loader","shellcode-runner"],"latest_commit_sha":null,"homepage":"","language":"Nim","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/S3lrius.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-06-09T17:57:19.000Z","updated_at":"2024-10-13T20:09:25.000Z","dependencies_parsed_at":"2025-03-23T18:47:47.895Z","dependency_job_id":null,"html_url":"https://github.com/S3lrius/Nimalathatep","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/S3lrius%2FNimalathatep","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/S3lrius%2FNimalathatep/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/S3lrius%2FNimalathatep/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/S3lrius%2FNimalathatep/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/S3lrius","download_url":"https://codeload.github.com/S3lrius/Nimalathatep/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248066011,"owners_count":21042016,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["nim","nim-lang","nimble","offensive-security","red-teaming","runner","shellcode","shellcode-injection","shellcode-loader","shellcode-runner"],"created_at":"2025-03-23T18:35:31.694Z","updated_at":"2026-03-17T21:03:54.615Z","avatar_url":"https://github.com/S3lrius.png","language":"Nim","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Nimalathatep\nNimalathatep is a Nim shellcode payload generation project that aims to get a stealthy binary into your hands quickly. All methods use well-known API-call sequences.\n\n# Evasion\nAV/EDR avoidance is performed through AES encryption followed by Base64, with the payload itself only being decrypted at runtime. The IV is currently static, but I aim to change this in the future. Compiling to a control panel item is your stealthiest approach for now. \n\n# Compilation\nEnsure you have NIM downloaded from here: https://nim-lang.org/install.html \u003c/br\u003e\n\u003c/br\u003e\n\nInstall the winim, ptr_math, and nim crypto prior to compiling with the following commands:\u003c/br\u003e\n```nimble install winim```\u003c/br\u003e\n```nimble install nimcrypto```\u003c/br\u003e\n```nimble install ptr_math``` \u003c/br\u003e\n```nimble install sysrandom``` \u003c/br\u003e\nTo compile: \u003c/br\u003e\n```nim -d:release c .\\nimalathatep.nim``` \u003c/br\u003e\n\u003c/br\u003e\n\u003cimg alt=\"alt_text\" width=\"1000\" src=\"compilation.PNG\" /\u003e\n\u003c/br\u003e\n\n# Usage\nRun the executable and give it the desired API method, shellcode file, and output file type: \u003c/br\u003e \u003c/br\u003e\n```.\\nimalathatep.exe \u003capiMethod\u003e \u003cbinFile\u003e \u003coutfiletype\u003e``` \u003c/br\u003e\n\u003c/br\u003e\n\u003cimg alt=\"alt_text\" width=\"1000\" src=\"payload_creation.PNG\" /\u003e\n\u003c/br\u003e\n\n# Defender Check\n\u003cimg alt=\"alt_text\" width=\"1000\" src=\"full-usage.gif\" /\u003e\n\n\n# Changes\n-Added support for all API calls to be used as an XLL \u003cbr\u003e\n-Added random key for encryption \u003cbr\u003e\n-Formatting fixes \u003cbr\u003e\n-Added new API method (EnumCalendarInfo) \u003cbr\u003e\n\n# To Do\n-Generation option to directly place the file into a PDF as an attachment \u003c/br\u003e\n-Custom unhook stuff \u003c/br\u003e\n-Add option to pack payload into iso or 7zip \u003c/br\u003e\n\n# Credits\nSome code bits from: \u003cbr\u003e\nhttps://github.com/byt3bl33d3r/OffensiveNim \u003c/br\u003e\nhttps://www.ired.team/ \u003c/br\u003e\nhttps://github.com/bigb0sss/Bankai \u003c--Initial inspiration\n\n# Disclaimer\nOnly use this for purposes involving systems that you have been given permission to access and alter. I am not responsible if you do illegal stuff. \n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fs3lrius%2Fnimalathatep","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fs3lrius%2Fnimalathatep","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fs3lrius%2Fnimalathatep/lists"}