Alternatives and similar repositories for SsnRetrieval

Users that are interested in SsnRetrieval are comparing it to the libraries listed below

• rbmm / RtlClone
  ☆42Updated 7 months ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆24Updated 5 months ago
• S12cybersecurity / ETWEvasionToolkit
  Toolkit of Projects to attack and evade Event Trace for Windows
  ☆20Updated last month
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• ameenalkerdy / ETWShellcodeLoader
  Shellcode Loader Utilizing ETW Events
  ☆65Updated 7 months ago
• Cracked5pider / kaine-assembly
  a demo module for the kaine agent to execute and inject assembly modules
  ☆42Updated last year
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆35Updated last year
• EvilBytecode / Eset-Unload
  Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …
  ☆12Updated 5 months ago
• EvilBytecode / Amsi-Patch-Updated-2025
  How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
  ☆23Updated 5 months ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆57Updated 9 months ago
• JayGLXR / RustySpy
  A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …
  ☆19Updated 7 months ago
• kleiton0x00 / RtlHijack
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆73Updated last month
• C5Hackr / c_syscalls
  https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.
  ☆29Updated last year
• draktuls / IAF-EAF-Shellcode-bypass-PoC
  Shellcode capable of bypassing EAF / IAF mitigations
  ☆24Updated 2 years ago
• kr0tt / EarlyExceptionHandling
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆122Updated last month
• alien-keric / VisualStudio-RCE-EvilSln
  A New Exploitation Technique for Visual Studio Projects
  ☆12Updated last year
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Updated 8 months ago
• Cracked5pider / eop24-26229
  A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user
  ☆41Updated last year
• bot984397 / eepy
  ☆38Updated 5 months ago
• HulkOperator / CallStackSpoofer
  ☆43Updated 9 months ago
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆74Updated 10 months ago
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆60Updated 11 months ago
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆66Updated last year
• lem0nSec / Dsebler
  Reimplementation of the KExecDD DSE bypass technique.
  ☆53Updated last year
• knight0x07 / NailaoLoader-Hiding-Execution-Flow
  NailaoLoader: Hiding Execution Flow via Patching
  ☆20Updated 7 months ago
• FalconForceTeam / bof-winrm-plugin-jump
  ☆29Updated 8 months ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆26Updated 5 months ago
• RSSU-Shellcode / Gleam-RT
  A runtime for developing large-scale and complex shellcode.
  ☆21Updated 3 months ago
• aitorfirm / BlackIris
  Thats it! An Open-Source Windows UEFI Rootkit
  ☆27Updated 2 months ago
• HulkOperator / Spoof-RetAddr
  ☆28Updated 11 months ago