Alternatives and similar repositories for D1rkInject

Users that are interested in D1rkInject are comparing it to the libraries listed below

• SaadAhla / BlockOpenHandle
  Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote m…
  ☆169Updated 2 years ago
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆161Updated last year
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆164Updated 3 months ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆189Updated last year
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆164Updated 9 months ago
• xalicex / Killers
  Exploitation of process killer drivers
  ☆201Updated last year
• naksyn / DojoLoader
  Generic PE loader for fast prototyping evasion techniques
  ☆233Updated 11 months ago
• OtterHacker / SetProcessInjection
  ☆151Updated last year
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 7 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆228Updated 6 months ago
• SaadAhla / PE-Obfuscator
  PE obfuscator with Evasion in mind
  ☆212Updated 2 years ago
• MzHmO / SymProcAddress
  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
  ☆142Updated last year
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆168Updated last year
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆118Updated last month
• nettitude / Tartarus-TpAllocInject
  ☆188Updated last year
• reveng007 / ReflectiveNtdll
  A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…
  ☆170Updated 2 years ago
• gabriellandau / EDRSandblast-GodFault
  EDRSandblast-GodFault
  ☆266Updated last year
• lem0nSec / KBlast
  Windows Kernel Offensive Toolset
  ☆124Updated last week
• naksyn / ModuleShifting
  Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…
  ☆118Updated last year
• CICADA8-Research / TypeLibWalker
  TypeLib persistence technique
  ☆115Updated 8 months ago
• securifybv / BOFRyptor
  ☆125Updated last year
• 0prrr / Malwear-Sweet
  Malware?
  ☆70Updated 8 months ago
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆155Updated last year
• mansk1es / GhostFart
  ☆136Updated 2 years ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆84Updated last year
• florylsk / NtRemoteLoad
  Remote Shellcode Injector
  ☆217Updated last year
• capt-meelo / KernelCallbackTable-Injection
  Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
  ☆127Updated 3 years ago
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆265Updated 9 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• ZeroMemoryEx / Tokenizer
  Kernel Mode Driver for Elevating Process Privileges
  ☆133Updated 2 years ago