Alternatives and similar repositories for Hells-Hollow

Users that are interested in Hells-Hollow are comparing it to the libraries listed below

• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆92Updated 5 months ago
• Teach2Breach / moonwalk
  find dll base addresses without PEB WALK
  ☆138Updated 2 weeks ago
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆130Updated 11 months ago
• joaoviictorti / coffeeldr
  A COFF Loader written in Rust
  ☆117Updated 2 weeks ago
• 0xTriboulet / rdll-rs
  A reflective DLL development template for the Rust programming language
  ☆105Updated 2 months ago
• Friends-Security / RedirectThread
  Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
  ☆186Updated last month
• Archie-osu / PowerHook
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆65Updated 3 months ago
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆72Updated 8 months ago
• Cracked5pider / kaine-assembly
  a demo module for the kaine agent to execute and inject assembly modules
  ☆39Updated 11 months ago
• tijme / relocatable
  Boilerplate to develop raw and truly Position Independent Code (PIC).
  ☆53Updated 6 months ago
• eversinc33 / GpuDecryptShellcode
  XOR decrypting shellcode using the GPU with OpenCL.
  ☆100Updated 2 months ago
• rbmm / SC
  shell code example
  ☆60Updated 2 months ago
• lap1nou / CLR_Heap_encryption
  ☆100Updated last year
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆72Updated 3 weeks ago
• passthehashbrowns / VectoredExceptionHandling
  ☆87Updated 11 months ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆96Updated 3 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 7 months ago
• MEhrn00 / boflink
  Linker for Beacon Object Files
  ☆122Updated 2 weeks ago
• susMdT / ForsHops
  ForsHops
  ☆55Updated 4 months ago
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆72Updated 10 months ago
• Teach2Breach / stargate
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆70Updated 2 weeks ago
• joaoviictorti / dinvk
  Dynamically invoke arbitrary code and use various tricks written idiomatically in Rust (Dinvoke)
  ☆86Updated 3 weeks ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆49Updated 6 months ago
• safedv / RustVEHSyscalls
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆152Updated 9 months ago
• cainiao1992 / ollvm-mingw
  An Obfuscator-LLVM based mingw-w64 toolchain.
  ☆40Updated 3 years ago
• ameenalkerdy / ETWShellcodeLoader
  Shellcode Loader Utilizing ETW Events
  ☆63Updated 5 months ago
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated last year
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆116Updated 7 months ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆56Updated 6 months ago
• JayGLXR / Rusty-Stardust
  A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…
  ☆57Updated 4 months ago