Alternatives and similar repositories for Modules

Users that are interested in Modules are comparing it to the libraries listed below

• 0prrr / Malwear-Sweet
  Malware?
  ☆74Updated 10 months ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆101Updated 2 years ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆84Updated last year
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆143Updated 10 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆91Updated last year
• rbmm / SC
  shell code example
  ☆62Updated 3 months ago
• 2x7EQ13 / CreateProcessAsPPL
  This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.
  ☆173Updated 2 weeks ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆43Updated last year
• deepinstinct / ShimMe
  ☆145Updated 10 months ago
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆131Updated last year
• NtDallas / Ulfberht
  Shellcode loader
  ☆94Updated 9 months ago
• RWXstoned / LdrShuffle
  Code execution/injection technique using DLL PEB module structure manipulation
  ☆168Updated 3 months ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆49Updated 3 years ago
• captain-woof / malware-study
  My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to any…
  ☆87Updated 2 months ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆161Updated 9 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆98Updated 6 months ago
• decoder-it / RelabelAbuse
  ☆61Updated last year
• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆86Updated 2 years ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆79Updated last year
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆109Updated last week
• 0xJs / BYOVD_read_write_primitive
  Proof of Concepts code for Bring Your Own Vulnerable Driver techniques
  ☆174Updated 2 weeks ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆169Updated 5 months ago
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆180Updated 2 years ago
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆76Updated 7 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆114Updated 11 months ago
• zero2504 / Early-Cryo-Bird-Injections
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆104Updated 5 months ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆50Updated 3 months ago
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• xforcered / Being-A-Good-CLR-Host
  ☆122Updated 7 months ago