Alternatives and similar repositories for stalksnet

Users that are interested in stalksnet are comparing it to the libraries listed below

• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆67Updated 8 months ago
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• rbmm / TL-TASK
  ☆20Updated last month
• 20urc3 / Publications
  This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks.
  ☆52Updated 3 months ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆63Updated 9 months ago
• Slowerzs / KeyJumper
  ☆51Updated 7 months ago
• hasherezade / flareon2024
  ☆39Updated 11 months ago
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆56Updated 8 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆43Updated last year
• alfarom256 / LogMeInPoCHandleDup
  ☆64Updated last year
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆72Updated 5 months ago
• tanc7 / skidstorm
  ☆26Updated 7 months ago
• voidvxvt / EnableAllTokenPrivs
  Enable or Disable TokenPrivilege(s)
  ☆14Updated last year
• iilegacyyii / gdbw
  Scriptable CLI debugger for windows, inspired by pwndbg ❤
  ☆92Updated 3 weeks ago
• mbanyamer / CVE-2025-30397---Windows-Server-2025-JScript-RCE-Use-After-Free-
  Remote Code Execution via Use-After-Free in JScript.dll (CVE-2025-30397)
  ☆63Updated 5 months ago
• 0xTriboulet / T-70
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆40Updated last year
• OtterHacker / Hooker
  ☆108Updated last year
• rasta-mouse / pwnlift
  Easy peasy file uploads
  ☆27Updated 2 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• xforcered / PhrackCTF
  Binary Exploitation Phrack CTF Challenge
  ☆136Updated 2 months ago
• rad9800 / talks
  ☆60Updated 6 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆121Updated last month
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆39Updated 8 months ago
• mrexodia / RiscyWorkshop
  Payload Obfuscation for Red Teams workshop materials
  ☆75Updated 3 weeks ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 10 months ago
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated last year
• xforcered / Agent-Development-Stack
  Backend development stack for agents
  ☆30Updated 3 months ago
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆53Updated 5 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆117Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆77Updated last year