Alternatives and similar repositories for Kernel-Rootkit-32Bit:

Users that are interested in Kernel-Rootkit-32Bit are comparing it to the libraries listed below

• freakanonymous / DLL_ROOTKIT_loader
  Rootkit loader for your rootkit dll, x86/x64 system wide DLL injection (+appinit_dlls registry create) uses heavens gate
  ☆19Updated 4 years ago
• ManulMap / malstring
  Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.
  ☆21Updated 10 months ago
• TRIKbranch / RunPE-X86--X64-
  With this RunPE you can easily inject your payload in any x86 or x64 program.
  ☆13Updated 5 years ago
• sreeharshabandi / Captain
  Process Creation, Image Load and Thread Creation Notification
  ☆12Updated last year
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆25Updated 5 years ago
• AdiMarianMutu / PE-File-Infection
  Infects PE files with a shellcode
  ☆18Updated 6 years ago
• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆19Updated 2 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆29Updated last year
• guidedhacking / GH_Syscall
  Small class to help perform syscalls.
  ☆21Updated last year
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆29Updated 4 years ago
• 0mWindyBug / FileHide
  filter driver to hide files and directories
  ☆20Updated last year
• xsh3llsh0ck / PicoHook
  Small driver that uses alternative syscalls feature (the project is still under development).
  ☆15Updated 11 months ago
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆33Updated 5 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆50Updated 7 years ago
• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆50Updated 5 years ago
• ivkin25 / Process-Hollowing
  An implementation of the Process Hollowing technique.
  ☆16Updated 4 years ago
• sodareverse / cppdumper
  C++ Program used to dump Themida and VMProtect.
  ☆25Updated last year
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆17Updated 5 years ago
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆20Updated 2 years ago
• f3di006 / ReverseSocks5
  Reverse Socks5 proxy for windows
  ☆13Updated 2 years ago
• byte2mov / anti-process
  stop any process from looking into your process by hooking.
  ☆16Updated last year
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆12Updated 2 years ago
• MahmoudZohdy / Anti-Analysis-DebuggerInjection
  Anti-Analysis technique, trick the debugger by Hiding events from it.
  ☆19Updated 3 years ago
• msmania / hk
  Injector with kernel power
  ☆16Updated 4 years ago
• hasherezade / injection
  Windows process injection methods
  ☆15Updated 3 years ago
• 1hAck-0 / zeroimport
  ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…
  ☆48Updated 2 years ago
• hugsy / modern-cpp-windows-driver-template
  Windows driver template, using C++20 & cmake & GithubActions
  ☆22Updated 8 months ago
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆40Updated 2 months ago
• 0mWindyBug / KeystrokeSniffer
  a windows kernel keylogger that works
  ☆20Updated last year
• efibootkit / shared-memory-full
  simple shared memory kernel-driver (its ass)
  ☆11Updated last year