Alternatives and similar repositories for Exorcism

Users that are interested in Exorcism are comparing it to the libraries listed below

• EvilBytecode / TaskMgr-Troll
  Troll TaskManager, and play with it .
  ☆25Updated 3 weeks ago
• AdvDebug / BehavEye
  Advanced dynamic malware analysis tool.
  ☆84Updated last year
• micREsoft / SysCaller
  Windows syscall SDK with dynamic offset resolution, validation, obfuscation, and multi language bindings. Bypass API hooks across differe…
  ☆43Updated last week
• moom825 / XenoStealer
  ☆45Updated 11 months ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆59Updated last month
• C5Hackr / PEB-Redirection
  ☆12Updated 10 months ago
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆111Updated last month
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆108Updated 4 months ago
• r0keb / TrashFormer
  A 64 bit executable junk code engine for polymorphic malware.
  ☆66Updated 2 months ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆37Updated last year
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆159Updated 9 months ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆49Updated 3 months ago
• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆26Updated 4 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆119Updated last week
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆30Updated 5 years ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆105Updated 2 years ago
• zero2504 / Shadow-Rebirth
  Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique
  ☆13Updated 8 months ago
• woldann / NThread
  Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…
  ☆55Updated last week
• EvilBytecode / Ntdll-Unhook
  Unhook Ntdll.dll, Go & C++.
  ☆27Updated 4 months ago
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆79Updated 2 months ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• EvilBytecode / PyDefender
  Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package.
  ☆68Updated 4 months ago
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆37Updated 2 years ago
• jdu2600 / Get-InjectedThreadEx
  Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2
  ☆45Updated last year
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆79Updated 2 years ago
• JayGLXR / MacOS-Stealer-in-Rust
  MacOS Stealer written in Rust. For Legal and Ethical Research Purposes Only.
  ☆19Updated 7 months ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆73Updated last month
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆114Updated 11 months ago
• LimerBoy / Soviet-Thief
  Yandex browser passwords and credit-cards decryption algorithm
  ☆20Updated 4 months ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆23Updated 4 months ago