Alternatives and similar repositories for Macho-loader:

Users that are interested in Macho-loader are comparing it to the libraries listed below

• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆52Updated last year
• invictus1306 / Anti-debugging-techniques
  Anti-Debugging detection and obufuscation techniques that involved the use of Win32 API functions.
  ☆34Updated 9 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 6 years ago
• DownWithUp / CVE-Stockpile
  Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
  ☆49Updated 4 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆33Updated last year
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆35Updated 3 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• vdisasm / pas-vmp-glueimport
  Simple tool to add imports recovered by VMSweeper (by Vamit) to VMProtect dump file
  ☆14Updated 7 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆35Updated 4 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆31Updated 8 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆34Updated 6 years ago
• hMihaiDavid / hooks
  A DLL that performs IAT hooking
  ☆27Updated 6 years ago
• hfiref0x / Vault
  Various code from the past (for historical purposes)
  ☆14Updated last year
• zodiacon / AccessMask
  ☆20Updated 5 years ago
• theevilbit / exploits
  ☆86Updated 7 months ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆18Updated 6 years ago
• etormadiv / devirtualizeme32_vmp_3.0.9_v2
  Toy approach to VMProtect virtualization
  ☆15Updated 6 years ago
• JaanusKaapPublic / Slides
  Will try to put here slides from now on when I give a talk
  ☆24Updated 3 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 8 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated 10 months ago
• bxlcity / malware
  ☆37Updated 7 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆44Updated 6 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• nettitude / InlineFunctionHooking
  Windows Inline function hooking library targeted at MSVC
  ☆27Updated 8 years ago
• star-sg / kernelcache_decryptor
  Kernel Cache Decryption for iOS
  ☆14Updated 3 years ago
• therealdreg / xshellex
  With xshellex you can paste any kind of c-shellcode strings in x64dbg, ollydbg & immunity debugger
  ☆39Updated last year
• redplait / armpatched
  clone of armadillo patched for windows
  ☆47Updated 6 months ago
• slyd0g / SwiftInMemoryLoading
  Swift implementation of in-memory Mach-O loading on macOS
  ☆63Updated 2 years ago
• Pigrecos / CodeDeobfuscator
  Code Deobfuscator
  ☆54Updated 9 years ago