Alternatives and similar repositories for stalksnet

Users that are interested in stalksnet are comparing it to the libraries listed below

• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated 8 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated last year
• whokilleddb / ASPxecute
  Execute shellcode via ASPNET compiler
  ☆57Updated 2 weeks ago
• referefref / Rusty-Telephone
  Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC
  ☆62Updated 10 months ago
• hasherezade / flareon2024
  ☆39Updated 10 months ago
• rbmm / TL-TASK
  ☆20Updated last month
• rad9800 / talks
  ☆60Updated 5 months ago
• alfarom256 / LogMeInPoCHandleDup
  ☆64Updated last year
• Slowerzs / KeyJumper
  ☆50Updated 6 months ago
• wetw0rk / wetw0rk.github.io
  ☆19Updated last month
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆56Updated 7 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆117Updated last year
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆23Updated 9 months ago
• OtterHacker / Hooker
  ☆108Updated 11 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆87Updated last year
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated last year
• mbanyamer / CVE-2025-30397---Windows-Server-2025-JScript-RCE-Use-After-Free-
  Remote Code Execution via Use-After-Free in JScript.dll (CVE-2025-30397)
  ☆63Updated 4 months ago
• mez-0 / citadel
  A Payload Analysis Framework
  ☆108Updated last week
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆70Updated 5 months ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆62Updated 8 months ago
• 0xTriboulet / T-70
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆40Updated 11 months ago
• tanc7 / skidstorm
  ☆26Updated 7 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 2 months ago
• iilegacyyii / gdbw
  Scriptable CLI debugger for windows, inspired by pwndbg ❤
  ☆83Updated last month
• voidvxvt / EnableAllTokenPrivs
  Enable or Disable TokenPrivilege(s)
  ☆14Updated last year
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆39Updated 7 months ago
• xforcered / PhrackCTF
  Binary Exploitation Phrack CTF Challenge
  ☆133Updated last month
• d1rkmtrr / VSCode-Backdoor
  Backdooring VSCode Projects
  ☆79Updated 4 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆118Updated last week