Alternatives and similar repositories for CPPMemory

Users that are interested in CPPMemory are comparing it to the libraries listed below

• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆56Updated last month
• DoubleLabyrinth / ProcessHollowing
  ☆37Updated 6 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆73Updated 9 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 4 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆20Updated 7 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆36Updated 10 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆50Updated 5 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated 3 months ago
• SouhailHammou / Exploits
  Exploits I've authored
  ☆60Updated 6 years ago
• OxMarco / darwinian-virus
  Project aimed at creating a malware able to evolve and adapt to the various host machines through metamorphic modifications, spontaneous …
  ☆44Updated 7 years ago
• d35ha / xKeLogger
  Kernel mode windows NT API logger
  ☆22Updated 6 years ago
• paranoidninja / 0xdarkvortex-Reverse-Engineering
  This repo contains all the code that will be referred at https://scriptdotsh.com by Paranoid Ninja
  ☆46Updated 5 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆90Updated 6 years ago
• djhohnstein / ProcessReimaging
  Process reimaging proof of concept code
  ☆96Updated 6 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆29Updated 6 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆98Updated 4 years ago
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆94Updated 6 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆28Updated 5 years ago
• FuzzySecurity / Driver-Template
  Bare template for a Kernel Mode Driver
  ☆51Updated 5 years ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆29Updated 5 years ago
• robindimyan / MalwareVulnerabilitiesExposures
  Malware vulnerability research. Coming soon..
  ☆12Updated 5 years ago
• NtRaiseHardError / Sysmon
  Sysmon shenanigans
  ☆66Updated 4 years ago
• NextSecurity / Gozi-MBR-rootkit
  Gozi-MBR-rootkit Bootkit Modified
  ☆70Updated 8 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆65Updated 7 years ago
• CptGibbon / Windows-Process-Injection
  Some simple process injection techniques targeting the Windows platform
  ☆31Updated 5 years ago
• SolomonSklash / UnhookingPOC
  A small commented POC for removing API hooks placed by AV/EDR.
  ☆34Updated 5 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆52Updated 6 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• redplait / pexphide
  PoC for hiding PE exports
  ☆67Updated 4 years ago
• Jyang772 / HideProcessHookMDL
  A simple rootkit to hide a process
  ☆47Updated 11 years ago