Alternatives and similar repositories for forger

Users that are interested in forger are comparing it to the libraries listed below

• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆23Updated 4 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 4 years ago
• dsnezhkov / exclave
  ☆16Updated 4 years ago
• hotnops / RemoteDebugView
  A DLL that serves OutputDebugString content over a TCP connection
  ☆35Updated 4 years ago
• X-C3LL / wfp-reader
  Proof of concept - Covert Channel using Windows Filtering Platform (C#)
  ☆21Updated 4 years ago
• moloch-- / wire-transfer
  Encode binary as English text over HTTP(s)
  ☆30Updated 2 years ago
• shlyuz / implant_go
  Golang Shlyuz Implant Implementation
  ☆13Updated 7 months ago
• perturbed-platypus / LinooxMalware
  ☆28Updated 6 years ago
• emperorcow / go-netscan
  ☆33Updated 5 years ago
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆28Updated 5 years ago
• audibleblink / getsystem
  Small utility package for manipulating Windows process tokens
  ☆26Updated 3 years ago
• xoreaxecx / PEmimic
  A PE morphing tool that allows you to mimic one executable file to another.
  ☆11Updated 2 years ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆23Updated 2 years ago
• perturbed-platypus / UEFIWriteCPP
  ☆12Updated 6 years ago
• hosom / honeycred
  Utility to inject honey tokens into lsass.
  ☆28Updated 8 years ago
• xpcmdshell / electron-probe
  Electron-Probe leverages the Node variant of the Chrome Debugging Protocol to execute JavaScript payloads inside of target Electron appli…
  ☆31Updated last week
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• its-a-feature / loginItemManipulator
  ☆15Updated 4 years ago
• rmdavy / VBAFunctionPointers
  ☆19Updated 5 years ago
• DanusMinimus / API-Hash
  API hashing written in C to load APIs indirectly using CRC32 hashing
  ☆14Updated 5 years ago
• its-a-feature / macos_execute_from_memory
  PoC of macho loading from memory
  ☆58Updated last year
• rmdavy / AmsiPEBWalkVBAx64
  ☆16Updated 5 years ago
• OmerYa / ROP-From-Zero-to-Nation-State-In-25-Minutes
  Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)
  ☆16Updated 5 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 4 years ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆29Updated 3 years ago
• audibleblink / dllexical
  easy dll proxying in go
  ☆14Updated 3 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆18Updated 3 years ago
• audibleblink / ino
  In 'n Out - See what goes in and comes out of PEs
  ☆35Updated 3 years ago
• 0xC0D1F1ED / cpp_vs_payload_template
  Visual Studio (C++) Solution Template for Payloads
  ☆18Updated 6 years ago
• cys3c / Siofra
  DLL hijacking vulnerability scanner and PE infector tool
  ☆20Updated 8 years ago