Alternatives and similar repositories for SelfDefense

Users that are interested in SelfDefense are comparing it to the libraries listed below

• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆28Updated 8 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 8 years ago
• aaaddress1 / HellKitty-In-VC
  Ring3 Rootkit Backdoor.
  ☆43Updated 10 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 7 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆24Updated 6 years ago
• EgeBalci / Injector
  Simple shellcode injector.
  ☆14Updated 6 years ago
• jasondrawdy / ShellGen
  Dynamic and extensible shell code generator with multiple output types which can be formatted in binary, hexadecimal, and the typical she…
  ☆19Updated 5 years ago
• cobbr / InsecurePowerShellHost
  InsecurePowerShellHost is a .NET Core host process for InsecurePowerShell, a version of PowerShell Core v6.0.0 with key security features…
  ☆32Updated 7 years ago
• basharbachir / HostingCLR-Bypass-AMSI-Windows-Defender
  ☆11Updated 6 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆15Updated 6 years ago
• chango77747 / ReverseShell
  Simple C# reverse shell with shellcode and process injection
  ☆39Updated 9 years ago
• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆19Updated 8 years ago
• d35ha / ShellInjector
  Execute an arbitrary command within the context of another process
  ☆20Updated 6 years ago
• arunvnnk / AVbypass
  Techniques that i have used to evade anti-virus during pen tests.
  ☆13Updated 7 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 7 years ago
• chango77747 / ShellCodeInjector_MsBuild
  ☆18Updated 7 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 5 years ago
• 0x00-0x00 / CVE-2019-1064
  CVE-2019-1064 Local Privilege Escalation Vulnerability
  ☆11Updated 6 years ago
• 3gstudent / Eventlogedit-evt--General
  Remove individual lines from Windows Event Viewer Log (EVT) files
  ☆45Updated 4 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆24Updated 6 years ago
• rastating / slae
  The source code of the SLAE assignments documented at https://rastating.github.io/
  ☆23Updated 6 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆17Updated 7 years ago
• hoangprod / COMHijacker
  Persistent through COM Hijacking
  ☆22Updated 6 years ago
• SarinI0 / Rats
  Iris is an adjudicational Trojan & a fullon userland RAT, Targeting windows machine's, maid for Research purposes And as a resource Kit f…
  ☆29Updated 6 years ago
• umair-7x / Remote-Access-Tool
  Access windows machine remotely on HTTP
  ☆12Updated 4 years ago
• ThunderGunExpress / Reflective_Schtasks
  ☆54Updated 7 years ago
• lockfale / DotNetAVBypass-Master
  C# AV bypass jank
  ☆33Updated 4 years ago
• malcomvetter / AntiDebug
  PoC: Prevent a debugger from attaching to managed .NET processes via a watcher process code pattern.
  ☆32Updated 7 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆28Updated 5 years ago