Alternatives and similar repositories for de4dot_mod

Users that are interested in de4dot_mod are comparing it to the libraries listed below

• killvxk / POCS
  May the POC be with you
  ☆64Updated last week
• jmgk77 / PDL
  A tool/library to proxify DLL
  ☆38Updated 3 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆40Updated 4 years ago
• howmp / COMFinder
  IDA plugin for COM
  ☆48Updated 3 years ago
• gkucherin / de4dot
  .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).
  ☆29Updated 3 years ago
• laomms / EXE2DLL_CLR
  Add export function and convert exe to dll
  ☆26Updated 5 years ago
• JPCERTCC / upx-mod
  UPX - the Ultimate Packer for eXecutables
  ☆68Updated 3 years ago
• killvxk / awesome-obfuscations
  ☆62Updated 5 months ago
• cbwang505 / AppContainerBypass
  AppContainerBypass
  ☆21Updated 4 years ago
• MalwareMechanic / RISCYpacker
  Process Hollowing Packer
  ☆29Updated 8 years ago
• arsium / HookLib
  A library to hook functions !
  ☆19Updated 4 years ago
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆37Updated 2 years ago
• therealdreg / shellex
  C-shellcode to hex converter, handy tool for paste & execute shellcodes in IDA PRO, gdb, windbg, radare2, ollydbg, x64dbg, immunity debug…
  ☆115Updated 2 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆39Updated 5 years ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆49Updated 4 years ago
• repnz / rpcmon
  RPC Monitor based on The ETW Microsoft-Windows-Rpc provider
  ☆23Updated 5 years ago
• michaeljgoodman / Dumpulator-IDA
  Currently proof-of-concept
  ☆17Updated 4 years ago
• Q4n / SuperPriv
  从admin冲到TrustedInstaller
  ☆17Updated 2 years ago
• zeze-zeze / HITCON-2023-Demo-CVE-2023-20562
  ☆61Updated 2 years ago
• bytewreck / hook-buster
  Proof-of-Concept software for detecting AV/EDR hooks in Windows libraries.
  ☆36Updated 3 years ago
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆37Updated 2 years ago
• aazhuliang / CVE-2021-31956-EXP
  ☆40Updated 3 years ago
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆41Updated 10 years ago
• vic4key / QLoader
  QLoader is a PE loader creator that helps you quickly create a non-exe loader for application
  ☆113Updated last year
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆61Updated 5 years ago
• baiyies / CrossInject
  32 bit process inject shellcode to 32 bit process and 64 bit process
  ☆35Updated 2 years ago
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆24Updated 2 years ago
• MastMind / PE-infector
  Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)
  ☆74Updated 2 weeks ago
• whokilleddb / A-Study-in-Obfuscation
  A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines
  ☆46Updated 3 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆25Updated 6 years ago