Alternatives and similar repositories for Ropdump:

Users that are interested in Ropdump are comparing it to the libraries listed below

• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆164Updated 10 months ago
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆110Updated 9 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆73Updated 3 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆106Updated 6 months ago
• wetw0rk / wetw0rk.github.io
  ☆18Updated last month
• ASP4RUX / bypassEDR-AV
  ☆55Updated 5 months ago
• grahamhelton / USP
  Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script)
  ☆142Updated 7 months ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆92Updated last week
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 2 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆55Updated 8 months ago
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆28Updated 6 months ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆50Updated 4 months ago
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated 6 months ago
• nbaertsch / AutoAppDomainHijack
  Automated .NET AppDomain hijack payload generation
  ☆123Updated 2 months ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆63Updated 3 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• HulkOperator / AuthStager
  ☆54Updated 5 months ago
• kleiton0x00 / contexter
  Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3
  ☆22Updated 8 months ago
• nixpal / shellsilo
  SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…
  ☆131Updated 5 months ago
• Maldev-Academy / CodeSearchDemo
  ☆39Updated last year
• Wh04m1001 / UserManagerEoP
  ☆79Updated last year
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆92Updated this week
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated last year
• eversinc33 / 1.6-C2
  Using the Counter Strike 1.6 RCON protocol as a C2 Channel.
  ☆78Updated 2 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆30Updated 2 weeks ago
• hasherezade / flareon2024
  ☆36Updated 4 months ago
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆137Updated 3 months ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆55Updated 4 months ago