Alternatives and similar repositories for T-1

Users that are interested in T-1 are comparing it to the libraries listed below

• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆60Updated 8 months ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆63Updated 5 months ago
• nbaertsch / Shrike
  Hunting and injecting RWX 'mockingjay' DLLs in pure nim
  ☆59Updated 7 months ago
• OtterHacker / Hooker
  ☆107Updated 8 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated 11 months ago
• r0keb / TrashFormer
  A 64 bit executable junk code engine for polymorphic malware.
  ☆59Updated last month
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆102Updated 2 years ago
• rbmm / SC
  shell code example
  ☆57Updated 2 months ago
• hdks-bug / redteam-techniques
  Collection of red team techniques.
  ☆56Updated 2 months ago
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆28Updated 4 months ago
• ameenalkerdy / ETWShellcodeLoader
  Shellcode Loader Utilizing ETW Events
  ☆63Updated 4 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆90Updated last year
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• JayGLXR / Rusty-Stardust
  A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…
  ☆57Updated 4 months ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆49Updated 2 years ago
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆43Updated 11 months ago
• passthehashbrowns / VectoredExceptionHandling
  ☆86Updated 10 months ago
• tehstoni / RustyKeys
  UAC Bypass using CMSTP in Rust
  ☆29Updated 7 months ago
• Teach2Breach / hollow_rs
  A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.
  ☆30Updated 5 months ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆51Updated last year
• Cracked5pider / kaine-assembly
  a demo module for the kaine agent to execute and inject assembly modules
  ☆39Updated 10 months ago
• Kharos102 / interceptor
  Sample Rust Hooking Engine
  ☆36Updated last year
• mez-0 / citadel
  A Payload Analysis Framework
  ☆30Updated 2 weeks ago
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆26Updated 3 months ago
• 0xjbb / vehspoof
  Callstack spoofing using a VEH because VEH all the things.
  ☆22Updated 4 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆75Updated 11 months ago
• brosck / L1LKiller
  「⚠️」Performing a BYOVD on the truesight.sys driver
  ☆38Updated 7 months ago
• JayGLXR / RustySpy
  A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …
  ☆16Updated 4 months ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆50Updated last year