Alternatives and similar repositories for Kernel-Rootkit-32Bit:

Users that are interested in Kernel-Rootkit-32Bit are comparing it to the libraries listed below

• AdiMarianMutu / PE-File-Infection
  Infects PE files with a shellcode
  ☆16Updated 6 years ago
• XShar / Win_API_Obfuscation
  Скрытие Win API
  ☆25Updated 5 years ago
• crvvdev / cpp-ransomware
  C\C++ Ransomware example using RSA and AES-128 with BCrypt library on Windows
  ☆16Updated 2 years ago
• freakanonymous / DLL_ROOTKIT_loader
  Rootkit loader for your rootkit dll, x86/x64 system wide DLL injection (+appinit_dlls registry create) uses heavens gate
  ☆19Updated 4 years ago
• TRIKbranch / RunPE-X86--X64-
  With this RunPE you can easily inject your payload in any x86 or x64 program.
  ☆13Updated 5 years ago
• HFaeiro / Lialis
  Rebuild of the original Remote Admin Tool
  ☆9Updated 4 years ago
• ManulMap / malstring
  Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.
  ☆17Updated 7 months ago
• XShar / simple_rootkit_for_windows_fork_r77
  Скрытие процессов и файлов в user mode
  ☆20Updated 5 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆14Updated 4 years ago
• xsh3llsh0ck / PicoHook
  Small driver that uses alternative syscalls feature (the project is still under development).
  ☆15Updated 8 months ago
• MahmoudZohdy / DLL-Obfuscation-V2
  Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.
  ☆18Updated 3 years ago
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆28Updated 3 years ago
• reverserb / Simple_PE_Loader
  ⚙️ Map and execute EXE in memory
  ☆10Updated 2 years ago
• i32-Sudo / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆28Updated 3 months ago
• XShar / Run_pe_cryptor_x64
  Криптор с антиэмуляцией и полиморфизмом для x64
  ☆14Updated 5 years ago
• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆18Updated 2 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆24Updated 5 years ago
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆23Updated last year
• Broihon / StartRoutine
  A library with four different methods to execute shellcode in a process
  ☆24Updated 4 years ago
• ivkin25 / Process-Hollowing
  An implementation of the Process Hollowing technique.
  ☆16Updated 4 years ago
• f3di006 / ReverseSocks5
  Reverse Socks5 proxy for windows
  ☆13Updated 2 years ago
• christianshub / process-injection-guard
  Signature scanner and API hooks to detect malicious process injection
  ☆22Updated last year
• AmJayden / Lazy-Importer
  minimal msvc-windows exclusive lazy importer for C++
  ☆32Updated 3 years ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆31Updated 10 months ago
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆12Updated 2 years ago
• mrx325 / hVNC-Recoded
  Original hVNC has been recoded to work with all version of windows above XP. Thanks to the original author for this wonderful tool.
  ☆10Updated 3 years ago
• Lima-X / XOrCryptEx
  XOrCryptEx lightweight C Utility/Algorithm
  ☆11Updated 2 years ago
• 0mWindyBug / FileHide
  filter driver to hide files and directories
  ☆18Updated 11 months ago
• Offensive-Panda / PEB_WALK_AND_API_OBFUSCATION_INJECTION
  This exploit use PEB walk technique to resolve API calls dynamically, obfuscate all API calls to perform process injection.
  ☆13Updated 6 months ago