Alternatives and similar repositories for de4dot_mod

Users that are interested in de4dot_mod are comparing it to the libraries listed below

• killvxk / awesome-obfuscations
  ☆51Updated last month
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆39Updated 3 years ago
• laomms / EXE2DLL_CLR
  Add export function and convert exe to dll
  ☆26Updated 4 years ago
• cbwang505 / AppContainerBypass
  AppContainerBypass
  ☆21Updated 4 years ago
• killvxk / POCS
  May the POC be with you
  ☆59Updated last week
• namazso / PEDiffGen
  Subtract one PE file from another!
  ☆22Updated 3 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆25Updated 5 years ago
• gkucherin / de4dot
  .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).
  ☆29Updated 3 years ago
• jmgk77 / PDL
  A tool/library to proxify DLL
  ☆38Updated 3 years ago
• buzzer-re / x64dbg-ASLR-Removal
  Plugin to patch and remove ASLR from PE files on x64dbg
  ☆39Updated 2 years ago
• JPCERTCC / upx-mod
  UPX - the Ultimate Packer for eXecutables
  ☆68Updated 3 years ago
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆34Updated 2 years ago
• aphage / wow64-gate-hook
  Wow64 Heaven's Gate Hook
  ☆28Updated 3 years ago
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆36Updated last year
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆49Updated 3 years ago
• orca-eaa5a / mac-defender
  ☆11Updated 3 years ago
• michaeljgoodman / Dumpulator-IDA
  Currently proof-of-concept
  ☆17Updated 3 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆49Updated 4 months ago
• howmp / COMFinder
  IDA plugin for COM
  ☆48Updated 2 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆40Updated 4 years ago
• jilvan1234 / WinAPI-Tricks
  ☆10Updated 4 years ago
• keowu / winsystemprogramming
  Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.
  ☆10Updated 2 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆60Updated 4 years ago
• ElvisBlue / emotet-deobfuscator
  IDA plugin to deobfuscate emotet CFF
  ☆18Updated 3 years ago
• ze0r / cve-2019-1422
  ☆14Updated 5 years ago
• h0pe-ay / HookTechnology
  记录一下Windows下的Hook技巧
  ☆14Updated last year
• Q4n / SuperPriv
  从admin冲到TrustedInstaller
  ☆17Updated 2 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆21Updated 5 years ago
• tcpie / hook_any_x64
  Easily hook WIN32 x64 functions
  ☆18Updated 4 months ago