Alternatives and similar repositories for FreeThreadHijacking

Users that are interested in FreeThreadHijacking are comparing it to the libraries listed below

• S12cybersecurity / VirtualAlloc-Implementation
  My Own VirtualAlloc Implementation to use as alternative unknown for all the defense solutions of VirtualAlloc Win32 API Function
  ☆9Updated last year
• S12cybersecurity / AntiVM
  C++ Class with various techniques to detect the execution in a virtualized environment
  ☆13Updated last year
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆12Updated 2 years ago
• S12cybersecurity / WindowInjector
  Linux Malware creator to attack Windows System via Reverse Shell with FindWindow Process Code Injection
  ☆18Updated 2 years ago
• un4ckn0wl3z / AbuseWin32
  Collection of Win32 with C++/Assembly for Hooking, Patch and Reversing PE file
  ☆15Updated 2 years ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆22Updated 2 months ago
• NUL0x4C / T.D.P.
  Using Thread Description To Hide Shellcodes
  ☆14Updated 2 years ago
• S12cybersecurity / PrivilegeEscalationClass
  C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin
  ☆22Updated last year
• S12cybersecurity / PDFTypeSpoofing
  PDF Icon File Type Spoofer
  ☆16Updated last year
• 0xflagplz / _x64_Loader
  Utilizing Alternative Shellcode Execution Via Callbacks
  ☆13Updated last year
• mathisvickie / CVE-2021-27965
  stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆11Updated 4 years ago
• EvilBytecode / SsnRetrieval
  Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…
  ☆12Updated 2 months ago
• varwara / CVE-2024-21338
  PoC for the Untrusted Pointer Dereference in the appid.sys driver
  ☆20Updated last year
• S12cybersecurity / ProcList
  C++ Script to list active processes with name, PID, Parent PID and User running it
  ☆10Updated 2 years ago
• cocomelonc / 2022-01-24-malware-injection-15
  Process injection via KernelCallbackTable
  ☆14Updated 3 years ago
• cocomelonc / 2022-01-14-malware-injection-13
  Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example
  ☆17Updated 3 years ago
• alal4465 / HeavensGateHook
  Hooking Heavens Gate in a weekend
  ☆13Updated 3 years ago
• S12cybersecurity / Reverse-Shell-C-PlusPlus
  Simple C++ Reverse Shell
  ☆12Updated 2 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆17Updated 5 years ago
• WHots / RosaryAV
  Lightweight Threat Detection System - (Base)
  ☆15Updated last year
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆29Updated last year
• EvilBytecode / Eset-Unload
  Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …
  ☆10Updated 2 months ago
• S12cybersecurity / MalDev-Lib
  Malware Libraries focused in help Malware Development
  ☆23Updated 2 years ago
• XaFF-XaFF / WinREPL
  WinREPL is a "read-eval-print loop" shell on Windows that is useful for testing/learning x86 and x64 assembly.
  ☆17Updated 2 years ago
• Yaxser / Itaskhandler
  Implementation of ITaskHandler in C++
  ☆13Updated 2 years ago
• cocomelonc / 2022-05-02-malware-pers-3
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13Updated 3 years ago
• klezVirus / AIDA64DRIVER-EoP
  AIDA64DRIVER Elevation of Privilege Vulnerability
  ☆14Updated 8 months ago
• xmmword / x0
  Hardware Spoofing & VirtualBox-Hardening x64 Bootkit
  ☆16Updated 2 years ago
• rbmm / LIB
  ☆7Updated 3 months ago
• Flawww / NtSyscaller
  Manually perform syscalls without going through any external API or DLL.
  ☆19Updated 2 years ago