Alternatives and similar repositories for PyDefender

Users that are interested in PyDefender are comparing it to the libraries listed below

• KingKDot / Exorcism
  The first open source runtime windows batch and command line deobfuscator
  ☆37Updated 3 weeks ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆110Updated 4 months ago
• C5Hackr / Segment-Encryption
  ☆27Updated 10 months ago
• LimerBoy / Soviet-Thief
  Yandex browser passwords and credit-cards decryption algorithm
  ☆20Updated 5 months ago
• C5Hackr / Eclipse
  A unique introduction to native runtime obfuscation.
  ☆23Updated 6 months ago
• Goodies365 / YandexDecrypt
  Decrypting yandex browser passwords
  ☆25Updated 5 months ago
• moom825 / XenoStealer
  ☆45Updated 11 months ago
• moom825 / visualstudio-suo-exploit
  This repository is a tool to create a .suo that when run by visual studio's will achieve code execution
  ☆109Updated last year
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆112Updated last month
• x86byte / LummaC2-Stealer
  LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis
  ☆81Updated 6 months ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆105Updated 2 years ago
• EvilBytecode / TaskMgr-Troll
  Troll TaskManager, and play with it .
  ☆26Updated last month
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆49Updated last year
• eversinc33 / GpuDecryptShellcode
  XOR decrypting shellcode using the GPU with OpenCL.
  ☆116Updated 3 months ago
• 0xflux / Hells-Hollow
  Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls
  ☆167Updated 2 weeks ago
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆46Updated last year
• idkhidden / winapipatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆44Updated 11 months ago
• ZeroMemoryEx / CVE-2025-26125
  (0day) Local Privilege Escalation in IObit Malware Fighter
  ☆150Updated 5 months ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆74Updated 2 months ago
• EvilBytecode / Evilbytecode-Anti-VM
  Measures average CPU cycles for the CPUID instruction to detect if the code is running in a VM by comparing against a threshold.
  ☆21Updated 4 months ago
• EvilBytecode / Ebyte-AMSI-ProxyInjector
  A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…
  ☆57Updated 4 months ago
• oldboy21 / RflDllOb
  Reflective DLL Injection Made Bella
  ☆237Updated 8 months ago
• CognisysGroup / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆218Updated 2 years ago
• woldann / NThread
  Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…
  ☆55Updated last week
• furax124 / Protect_Loader
  A fucking real shellcode loader with a GUI. Work-in-Progress.
  ☆76Updated 2 months ago
• 0xHossam / KernelCallbackTable-Injection-PoC
  Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…
  ☆231Updated 10 months ago
• Fadi002 / MalwareInvestigation
  reverse engineering random malwares
  ☆25Updated 7 months ago
• JayGLXR / MacOS-Stealer-in-Rust
  MacOS Stealer written in Rust. For Legal and Ethical Research Purposes Only.
  ☆19Updated 8 months ago
• EvilBytecode / EByte-Pattern-AmsiPatch
  Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…
  ☆23Updated 4 months ago