Alternatives and similar repositories for TypeLibWalker:

Users that are interested in TypeLibWalker are comparing it to the libraries listed below

• FalconForceTeam / bof-winrm-client
  ☆108Updated 3 months ago
• NtDallas / OdinLdr
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆114Updated 2 months ago
• Octoberfest7 / enumhandles_BOF
  ☆125Updated 7 months ago
• NtDallas / Ulfberht
  Shellcode loader
  ☆81Updated 5 months ago
• MythicAgents / Xenon
  A Mythic agent for Windows written in C
  ☆119Updated this week
• tdeerenberg / InlineWhispers3
  Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion
  ☆76Updated 2 weeks ago
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆63Updated 8 months ago
• passthehashbrowns / BOFMask
  ☆120Updated last year
• securifybv / BOFRyptor
  ☆122Updated last year
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆143Updated 2 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆74Updated 8 months ago
• Meowmycks / koneko
  Robust Cobalt Strike shellcode loader with multiple advanced evasion features
  ☆123Updated last week
• SaadAhla / D1rkSleep
  Improved version of EKKO by @5pider that Encrypts only Image Sections
  ☆119Updated 2 years ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF
  ☆155Updated 2 years ago
• zero2504 / Early-Cryo-Bird-Injections
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆92Updated 2 weeks ago
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆150Updated last year
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆76Updated 2 months ago
• Hagrid29 / RemotePatcher
  Patch AMSI and ETW in remote process via direct syscall
  ☆81Updated 2 years ago
• EspressoCake / Defender-Exclusions-Creator-BOF
  ☆80Updated last year
• xforcered / Being-A-Good-CLR-Host
  ☆103Updated 3 months ago
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆81Updated 6 months ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆77Updated last year
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆84Updated 2 years ago
• deh00ni / NtDumpBOF
  ☆97Updated 7 months ago
• lap1nou / CLR_Heap_encryption
  ☆98Updated last year
• iilegacyyii / DataInject-BOF
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆66Updated last week
• fin3ss3g0d / IoDllProxyLoad
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆60Updated last year
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆130Updated 8 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆108Updated 9 months ago
• decoder-it / RelabelAbuse
  ☆61Updated 10 months ago