Alternatives and similar repositories for DLLInjectionDetector

Users that are interested in DLLInjectionDetector are comparing it to the libraries listed below

• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆37Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 11 months ago
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆37Updated 2 months ago
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆46Updated last year
• buzzer-re / Shinigami
  A dynamic unpacking tool
  ☆137Updated last year
• ZeroMemoryEx / Hooks_Hunter
  Simple API Hooks detector
  ☆73Updated 2 years ago
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆22Updated 2 months ago
• woldann / NThread
  Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…
  ☆47Updated this week
• 0x1c1101 / blazing_asm
  Simple, fast and lightweight Header-Only C++ Assembler Library
  ☆62Updated 2 weeks ago
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆78Updated last week
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆47Updated last year
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated 2 years ago
• idkhidden / WinApiPatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆42Updated 9 months ago
• cocomelonc / 2022-06-05-malware-av-evasion-7
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆35Updated 3 years ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆36Updated last year
• adamhlt / Cave-Finder
  Tool to find code cave in PE image (x86 / x64) - Find empty space to place code in PE files
  ☆66Updated last year
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆85Updated 2 months ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated 2 years ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆59Updated 2 years ago
• Nordgaren / stealth-win
  ☆47Updated last year
• MahmoudZohdy / Process-Injection-Techniques
  Various Process Injection Techniques
  ☆148Updated 3 years ago
• jdu2600 / Etw-SyscallMonitor
  Monitors ETW for security relevant syscalls maintaining the set called by each unique process
  ☆79Updated 2 years ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆93Updated this week
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆105Updated 2 years ago
• aaaddress1 / ntkrnlProtectScan
  One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
  ☆43Updated last year
• iilegacyyii / ExportDumper
  A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.
  ☆70Updated 2 years ago
• XaFF-XaFF / Kernel-Process-Hollowing
  Windows x64 kernel mode rootkit process hollowing POC.
  ☆191Updated last year
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated 2 years ago
• jonaslyk / temp
  ☆71Updated 2 years ago