Alternatives and similar repositories for file-unpumper

Users that are interested in file-unpumper are comparing it to the libraries listed below

• gemini-security / GithubC2
  ☆28Updated last year
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 2 years ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• Tomiwa-Ot / py-amsi
  Scan strings or files for malware using the Windows Antimalware Scan Interface
  ☆30Updated 2 years ago
• TraiLeR2 / CVE-2023-36168
  An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component
  ☆11Updated 2 years ago
• Iansus / DllProxy
  ☆17Updated 2 years ago
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆19Updated 2 years ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆19Updated 2 years ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆23Updated 6 months ago
• ProcessusT / EnumSSN
  Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current pr…
  ☆21Updated last year
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated last year
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated 2 years ago
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated last year
• Logisek / CalcOrItDidntHappen
  A curated collection of Living off the Land (LotL) attack demonstrations where trusted binaries go rogue, because if it didn’t launch cal…
  ☆33Updated 2 weeks ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• shlyuz / teamserver
  ☆12Updated 3 years ago
• mlcsec / SigFinder
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 3 years ago
• splexas / TrampHooker
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆21Updated last year
• oldboy21 / CGPL
  Yet, Another Packer/Loader
  ☆25Updated 2 years ago
• HackingThings / SuperSneakyExec
  Loading and executing shellcode in C# without PInvoke.
  ☆22Updated 3 years ago
• kozmer / silentpulse
  single-threaded event driven sleep obfuscation poc for linux
  ☆35Updated 4 months ago
• FuzzySecurity / Magikarp
  ECC Public Key Cryptography
  ☆37Updated 2 years ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated 2 years ago
• persistent-security / hermes-the-messenger
  A PoC for achieving persistence via push notifications on Windows
  ☆47Updated 2 years ago
• securekomodo / CVE-2024-22026
  Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"
  ☆16Updated last year
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated 2 years ago
• ricardojoserf / SharpObfuscate
  Obfuscate payloads using IPv4, IPv6, MAC or UUID strings
  ☆21Updated last year