Alternatives and similar repositories for Nidhogg:

Users that are interested in Nidhogg are comparing it to the libraries listed below

• wavestone-cdt / EDRSandblast
  ☆1,618Updated 7 months ago
• Cracked5pider / Stardust
  A modern 32/64-bit position independent implant template
  ☆1,168Updated last week
• vxunderground / VX-API
  Collection of various malicious functionality to aid in malware development
  ☆1,617Updated last year
• jthuraisamy / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆1,618Updated 2 years ago
• Mr-Un1k0d3r / EDRs
  ☆2,062Updated 2 years ago
• phra / PEzor
  Open-Source Shellcode & PE Packer
  ☆1,925Updated last year
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,422Updated 3 years ago
• matthieu-hackwitharts / Win32_Offensive_Cheatsheet
  Win32 and Kernel abusing techniques for pentesters
  ☆945Updated last year
• m0n0ph1 / Process-Hollowing
  Great explanation of Process Hollowing (a Technique often used in Malware)
  ☆1,311Updated last year
• klezVirus / SysWhispers3
  SysWhispers on Steroids - AV/EDR evasion via direct system calls.
  ☆1,392Updated 8 months ago
• wietze / HijackLibs
  Project for tracking publicly disclosed DLL Hijacking opportunities.
  ☆732Updated 2 weeks ago
• am0nsec / HellsGate
  Original C Implementation of the Hell's Gate VX Technique
  ☆1,019Updated 3 years ago
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,140Updated this week
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,173Updated last year
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,073Updated last year
• Xacone / BestEdrOfTheMarket
  AV/EDR Evasion Lab for Training & Learning Purposes
  ☆1,219Updated last month
• klezVirus / inceptor
  Template-Driven AV/EDR Evasion Framework
  ☆1,650Updated last year
• ZeroMemoryEx / Chaos-Rootkit
  Now You See Me, Now You Don't
  ☆917Updated 2 months ago
• XaFF-XaFF / Cronos-Rootkit
  Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
  ☆884Updated 3 years ago
• ZeroMemoryEx / Terminator
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆960Updated last year
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆1,893Updated 6 months ago
• tkmru / awesome-edr-bypass
  Awesome EDR Bypass Resources For Ethical Hacking
  ☆1,133Updated 2 months ago
• daem0nc0re / TangledWinExec
  PoCs and tools for investigation of Windows process execution techniques
  ☆912Updated 2 weeks ago
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,852Updated 2 years ago
• RedTeamOperations / Advanced-Process-Injection-Workshop
  ☆748Updated last year
• aahmad097 / AlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks
  ☆1,537Updated 2 years ago
• NUL0x4C / AtomLdr
  A DLL loader with advanced evasive features
  ☆708Updated 2 years ago
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)
  ☆930Updated last year
• mgeeky / ShellcodeFluctuation
  An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting…
  ☆1,001Updated 2 years ago
• mgeeky / ThreadStackSpoofer
  Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation fr…
  ☆1,102Updated 2 years ago