Alternatives and similar repositories for PyDefender

Users that are interested in PyDefender are comparing it to the libraries listed below

• KingKDot / Exorcism
  The first open source runtime windows batch and command line deobfuscator
  ☆42Updated 5 months ago
• C5Hackr / Segment-Encryption
  ☆28Updated last year
• Goodies365 / YandexDecrypt
  Decrypting yandex browser passwords
  ☆27Updated 9 months ago
• moom825 / XenoStealer
  ☆52Updated last year
• LimerBoy / Soviet-Thief
  Yandex browser passwords and credit-cards decryption algorithm
  ☆22Updated 9 months ago
• EvilBytecode / TaskMgr-Troll
  Troll TaskManager, and play with it .
  ☆30Updated 5 months ago
• x86byte / LummaC2-Stealer
  LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis
  ☆99Updated 11 months ago
• C5Hackr / Eclipse
  A unique introduction to native runtime obfuscation.
  ☆74Updated 10 months ago
• moom825 / visualstudio-suo-exploit
  This repository is a tool to create a .suo that when run by visual studio's will achieve code execution
  ☆111Updated 2 years ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆125Updated 9 months ago
• AdvDebug / BehavEye
  Advanced dynamic malware analysis tool.
  ☆82Updated 2 years ago
• hwbp / LazyHook
  Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.
  ☆128Updated last month
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆119Updated 6 months ago
• woldann / NThread
  Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…
  ☆59Updated 3 months ago
• sqlerrorthing / ShadowSniff
  Windows stealer written in Rust, focused on minimal dependencies and maximum efficiency. It uses mostly direct Windows API calls, avoidin…
  ☆62Updated 3 months ago
• symeonp / Lenovo-CVE-2025-8061
  PoC for popping a system shell against the LnvMSRIO.sys driver
  ☆117Updated 3 months ago
• EvilBytecode / Evilbytecode-Anti-VM
  Measures average CPU cycles for the CPUID instruction to detect if the code is running in a VM by comparing against a threshold.
  ☆21Updated 9 months ago
• furax124 / Protect_Loader
  A fucking real shellcode loader with a GUI. Work-in-Progress.
  ☆81Updated 7 months ago
• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆29Updated 9 months ago
• githubesson / chrome_abe_poc
  golang decryption poc of the new app bound encryption introduced in chrome version 127.
  ☆22Updated last year
• JayGLXR / MacOS-Stealer-in-Rust
  MacOS Stealer written in Rust. For Legal and Ethical Research Purposes Only.
  ☆25Updated last year
• pathetic / async-rust-rat
  [WIP] A Modern Rust Remote Administration Tool for Windows.
  ☆55Updated 2 months ago
• EvilBytecode / ThunderKitty
  🔑 Open source stealer written in Go, all logs will be sent to Telegram bot.
  ☆137Updated 9 months ago
• EvilBytecode / PhantomDelay
  PhantomDelay is a precise delay function that uses the Windows high resolution performance counter to pause your program for a specified …
  ☆18Updated 8 months ago
• eversinc33 / GpuDecryptShellcode
  XOR decrypting shellcode using the GPU with OpenCL.
  ☆120Updated 8 months ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆108Updated 3 years ago
• ZeroMemoryEx / CVE-2025-26125
  ( 0day ) Local Privilege Escalation in IObit Malware Fighter
  ☆164Updated 10 months ago
• ntdll0 / HVNC
  My POC implementation of HVNC (Hidden VNC / Hidden Desktop)
  ☆28Updated last year
• r0keb / TrashFormer
  A 64 bit executable junk code engine for polymorphic malware.
  ☆75Updated 7 months ago
• chainski / PandaLoader
  A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal builder.
  ☆84Updated 4 months ago