Alternatives and similar repositories for Runpe-ProcessHollowing

Users that are interested in Runpe-ProcessHollowing are comparing it to the libraries listed below

• Kara-4search / FullDLLUnhooking_CSharp
  Unhook DLL via cleaning the DLL 's .text section
  ☆9Updated 3 years ago
• arsium / BypassUAC
  A rework of CMLuaUtil AutoElevated
  ☆25Updated 2 years ago
• arsium / ShellCodeLoaderCSharp
  A small shellcode loader library written in C#
  ☆46Updated 3 years ago
• exploitblizzard / UAC-Bypass
  Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯
  ☆44Updated 3 years ago
• tr1xongithub / UACBypass-FUD
  ☆8Updated 2 years ago
• NYAN-x-CAT / SharpShell
  Injecting shellcode into a process memory and executing it in C#
  ☆55Updated 2 years ago
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆85Updated 2 years ago
• nqntmqmqmb / pePolymorpher
  A tool implementing process hollowing making your PE polymorphic
  ☆15Updated 4 years ago
• XShar / BypassAV_Framework
  Test antiviruses
  ☆12Updated last year
• dr4k0nia / MurkyStrings
  A string obfuscator for .NET apps, built to evade static string analysis.
  ☆104Updated 2 years ago
• AzAgarampur / byeintegrity5-uac
  Bypass UAC at any level by abusing the Task Scheduler and environment variables
  ☆31Updated 3 years ago
• GetRektBoy724 / HalosUnhooker
  Halos Gate-based NTAPI Unhooker
  ☆52Updated 3 years ago
• plackyhacker / Unhook-BitDefender
  Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.
  ☆54Updated last year
• GetRektBoy724 / TripleS
  Extracting Syscall Stub, Modernized
  ☆65Updated 3 years ago
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 2 years ago
• 0xyg3n / DarkFender
  Disable Windows Defender Silently (ByPass TamperProtection & ByPass Trustednstaller)
  ☆35Updated 4 years ago
• w1u0u1 / NanoCore
  NanoCore rat stub source code
  ☆38Updated 3 years ago
• ProcessusT / UnhookingDLL
  This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…
  ☆70Updated last year
• whydee86 / FUD-ShellCode-UUID
  Making Shellcode fully undetectable using uuid
  ☆23Updated 4 years ago
• XShar / shell_crypor_framework
  Криптор на шелл-кодах
  ☆9Updated 5 years ago
• SaadAhla / StackCrypt
  Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume thread…
  ☆160Updated last year
• AlSch092 / HideStaticReferences
  Research into removing strings & API call references at compile-time (Anti-Analysis)
  ☆27Updated last year
• MahmoudZohdy / APICallProxy
  Windows API Call Obfuscation
  ☆104Updated 2 years ago
• arsium / PELoader
  ☆20Updated last year
• aplyc1a / PEMemoryLoader
  Load static-compiled PE from remote server.
  ☆62Updated 3 years ago
• adamhlt / Basic-Rootkit
  POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
  ☆54Updated last year
• MastMind / PE-infector
  Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)
  ☆60Updated last year
• sexyiam / UAC-Bypass
  UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.
  ☆48Updated last year
• miketestz / BitRAT_is_Thief
  It contains malicious features that can steal files from BitRAT tools.
  ☆11Updated 3 years ago
• Chainski / Chainski-Crypter
  Lime Crypter Obfuscator Mod
  ☆30Updated 11 months ago