Alternatives and similar repositories for win32api-practice

Users that are interested in win32api-practice are comparing it to the libraries listed below

• NoOne-hub / Beacon.dll
  Beacon.dll reverse
  ☆141Updated 4 years ago
• bestspear / ReBeacon_ForClang
  Beacon compiled using clang
  ☆72Updated 3 years ago
• b1tg / rs-shellcode
  Another shellcode runner 🦀 🐚
  ☆148Updated 4 years ago
• zcgonvh / TaskSchedulerMisc
  Misc TaskScheduler Plays
  ☆238Updated 3 years ago
• Ryze-T / EdrKiller
  ☆92Updated 4 years ago
• waldo-irc / LockdExeDemo
  A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/
  ☆194Updated 4 years ago
• WBGlIl / go-ReflectiveDLL
  ReflectiveDLL
  ☆156Updated 5 years ago
• timwhitez / ReturnGate
  ReturnGate, just like HellsGate.
  ☆68Updated 3 years ago
• evilashz / PigSyscall
  An implementation of an indirect system call
  ☆132Updated 2 years ago
• dust-life / run_pe
  ☆51Updated 4 years ago
• WBGlIl / Beacon_re
  ☆89Updated 3 years ago
• BronzeTicket / ClipboardWindow-Inject
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆68Updated 3 years ago
• HadesW / power-kill
  power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
  ☆48Updated 4 years ago
• morph3 / Windows-RPC-Backdoor
  Simple windows rpc server for research purposes only
  ☆83Updated 3 years ago
• timwhitez / killProcessPOC
  use aswArPot.sys to kill process
  ☆69Updated 3 years ago
• scareing / UAC_wenpon
  UAC_wenpon
  ☆49Updated 4 years ago
• hackerhouse-opensource / ColorDataProxyUACBypass
  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…
  ☆142Updated 3 years ago
• EddieIvan01 / rustdesk-hvnc
  HVNC based on RustDesk
  ☆108Updated last year
• myzxcg / BypassUAC-Dll
  Use COM Component Bypass UAC,Dll Version
  ☆36Updated 4 years ago
• timwhitez / Doge-sRDI
  Shellcode implementation of Reflective DLL Injection by Golang. Convert DLLs to position independent shellcode
  ☆63Updated 4 years ago
• 0x00Check / Amaterasu
  Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…
  ☆78Updated last year
• idiotc4t / ObfuscationStrings-new
  ☆32Updated 5 years ago
• timwhitez / Spoofing-Gate
  (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll
  ☆45Updated 3 years ago
• timwhitez / Doge-MemX
  Golang implementation of Reflective load PE from memory
  ☆64Updated 4 years ago
• crisprss / Extracted_WD_VDM
  Windows Defender VDM lua collections
  ☆48Updated 3 years ago
• evilashz / CVE-2021-1675-LPE-EXP
  PrintNightmare , Local Privilege Escalation of CVE-2021-1675 or CVE-2021-34527
  ☆58Updated 4 years ago
• mrd0x / dll_inject_vs_binaries
  LOLBINs that inject a DLL into a given process ID.
  ☆139Updated 4 years ago
• howmp / donut_ollvm
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆69Updated 3 months ago
• qwqdanchun / HVNC
  基于Tinynuke修复得到的HVNC
  ☆189Updated 4 years ago
• Rostelecom-Red-Team / GoodbyeEDR
  ☆81Updated 4 years ago