Alternatives and similar repositories for OptixGate

Users that are interested in OptixGate are comparing it to the libraries listed below

• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆91Updated last year
• NUL0x4C / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆56Updated 3 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆77Updated last year
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆60Updated 9 months ago
• NtDallas / Ulfberht
  Shellcode loader
  ☆92Updated 9 months ago
• ameenalkerdy / ETWShellcodeLoader
  Shellcode Loader Utilizing ETW Events
  ☆65Updated 6 months ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• deepinstinct / ShimMe
  ☆145Updated 10 months ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆79Updated last year
• 0xJs / EnumMitigations
  Reports on Driver, LSASS and other security services mitigations
  ☆31Updated 2 weeks ago
• OtterHacker / Hooker
  ☆108Updated 10 months ago
• dmcxblue / WSL-Payloads
  A small How-To on creating your own weaponized WSL file
  ☆113Updated last month
• ghostbyt3 / BYOVDFinder
  Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
  ☆68Updated last month
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• decoder-it / ChgPass
  ☆133Updated 6 months ago
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆98Updated last week
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆66Updated 6 months ago
• 0xJs / BYOVD_read_write_primitive
  Proof of Concepts code for Bring Your Own Vulnerable Driver techniques
  ☆161Updated last week
• 2x7EQ13 / CreateProcessAsPPL
  This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.
  ☆168Updated last week
• Retr0-code / hash-dumper
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆66Updated last year
• kleiton0x00 / RtlHijack
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆55Updated last week
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆76Updated 7 months ago
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆65Updated last year
• rad9800 / FileRenameJunctionsEDRDisable
  ☆157Updated 8 months ago
• MythicAgents / Xenon
  A Mythic agent for Windows written in C
  ☆133Updated last month
• HulkOperator / AuthStager
  ☆57Updated 10 months ago
• MEhrn00 / boflink
  Linker for Beacon Object Files
  ☆127Updated last month
• MaorSabag / Paruns-Fart
  Just another ntdll unhooking using Parun's Fart technique
  ☆75Updated 2 years ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆49Updated 3 months ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆101Updated 2 years ago