Alternatives and similar repositories for win32api-practice

Users that are interested in win32api-practice are comparing it to the libraries listed below

• NoOne-hub / Beacon.dll
  Beacon.dll reverse
  ☆140Updated 3 years ago
• waldo-irc / LockdExeDemo
  A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/
  ☆188Updated 3 years ago
• Ryze-T / EdrKiller
  ☆91Updated 3 years ago
• zcgonvh / TaskSchedulerMisc
  Misc TaskScheduler Plays
  ☆233Updated 2 years ago
• WBGlIl / go-ReflectiveDLL
  ReflectiveDLL
  ☆157Updated 5 years ago
• alfarom256 / StinkyLoader
  It stinks
  ☆102Updated 3 years ago
• b1tg / rs-shellcode
  Another shellcode runner 🦀 🐚
  ☆148Updated 3 years ago
• bestspear / ReBeacon_ForClang
  Beacon compiled using clang
  ☆69Updated 2 years ago
• hackerhouse-opensource / ColorDataProxyUACBypass
  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…
  ☆138Updated 2 years ago
• timwhitez / ReturnGate
  ReturnGate, just like HellsGate.
  ☆67Updated 2 years ago
• evilashz / Visual-Studio-BOF-template
  more conveniently Visual-Studio-BOF-template
  ☆65Updated last year
• 0x00Check / Amaterasu
  Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…
  ☆72Updated last year
• evilashz / PigSyscall
  An implementation of an indirect system call
  ☆127Updated last year
• ca3tie1 / CrackSleeve
  破解CS4.0
  ☆162Updated 5 years ago
• HadesW / power-kill
  power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes
  ☆46Updated 3 years ago
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆76Updated 5 years ago
• WBGlIl / Beacon_re
  ☆89Updated 2 years ago
• dust-life / run_pe
  ☆49Updated 3 years ago
• liuxigu / bypassuac
  bypass uac
  ☆143Updated 6 years ago
• evilashz / CVE-2021-1675-LPE-EXP
  PrintNightmare , Local Privilege Escalation of CVE-2021-1675 or CVE-2021-34527
  ☆59Updated 3 years ago
• BronzeTicket / ClipboardWindow-Inject
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆69Updated 2 years ago
• Rvn0xsy / GetWindowsCredentials
  通过WindowsAPI获取用户凭证，并保存到文件中
  ☆194Updated 11 months ago
• idiotc4t / ObfuscationStrings-new
  ☆32Updated 4 years ago
• Yaxser / COFFLoader2
  Load and execute COFF files and Cobalt Strike BOFs in-memory
  ☆217Updated 2 years ago
• morph3 / Windows-RPC-Backdoor
  Simple windows rpc server for research purposes only
  ☆82Updated 3 years ago
• timwhitez / killProcessPOC
  use aswArPot.sys to kill process
  ☆67Updated 2 years ago
• knightswd / ProcessGhosting
  ☆74Updated 3 years ago
• Rostelecom-Red-Team / GoodbyeEDR
  ☆81Updated 3 years ago
• ASkyeye / FilelessRemotePE
  Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique
  ☆63Updated 2 years ago
• jseclab / obj2shellcode
  shellcode生成框架
  ☆86Updated 10 months ago