Alternatives and similar repositories for PyDefender

Users that are interested in PyDefender are comparing it to the libraries listed below

• C5Hackr / Segment-Encryption
  ☆25Updated 7 months ago
• idkhidden / WinApiPatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆42Updated 8 months ago
• SkarSys / windows-kernel-trojan
  A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)
  ☆31Updated 7 months ago
• moom825 / XenoStealer
  ☆35Updated 8 months ago
• Goodies365 / YandexDecrypt
  Decrypting yandex browser passwords
  ☆19Updated last month
• byte2mov / codecave-hook
  codecave hook reverse engineering toolkit.
  ☆36Updated last year
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆47Updated last year
• woldann / NThread
  Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…
  ☆43Updated this week
• EvilBytecode / Sryxen-Stealer-Paid-Source
  Stealer in c++.
  ☆39Updated last month
• GDATAAdvancedAnalytics / Pyarmor-Tooling
  Scripts for statically unpacking Pyarmor v8+
  ☆65Updated last week
• x86byte / LummaC2-Stealer
  LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis
  ☆52Updated 3 months ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆69Updated last month
• eversinc33 / unKover
  PoC Anti-Rootkit/Anti-Cheat Driver.
  ☆197Updated last month
• ShorterKing / Chrome-Passwords-decrypt
  This script will work with the latest version of chrome
  ☆11Updated 3 weeks ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆82Updated last month
• AdvDebug / BehavEye
  Advanced dynamic malware analysis tool.
  ☆83Updated last year
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• dk0m / ZeroCrumb
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆15Updated last week
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆59Updated 10 months ago
• namazso / dll-universal-patcher
  A universal binary patching dll.
  ☆89Updated 7 months ago
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆128Updated 2 years ago
• Chainski / PandaLoader
  A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal builder.
  ☆53Updated last month
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆76Updated last month
• Azvanzed / CVE-2024-44083
  Makes IDA (most versions) to crash upon opening it.
  ☆88Updated 9 months ago
• AlSch092 / HideStaticReferences
  Research into removing strings & API call references at compile-time (Anti-Analysis)
  ☆27Updated last year
• EvilBytecode / EByte-Pattern-AmsiPatch
  Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…
  ☆18Updated 3 weeks ago
• ntdll0 / HVNC
  My POC implementation of HVNC (Hidden VNC / Hidden Desktop)
  ☆23Updated 5 months ago
• HulkOperator / Spoof-RetAddr
  ☆20Updated 6 months ago
• githubesson / chrome_abe_poc
  golang decryption poc of the new app bound encryption introduced in chrome version 127.
  ☆21Updated 7 months ago
• DriverHunter / Win-Driver-EXP
  This repo contains EXPs about Vulnerable Windows Driver
  ☆45Updated last year