Alternatives and similar repositories for MagicDot

Users that are interested in MagicDot are comparing it to the libraries listed below

• joe-desimone / rep-research
  ☆76Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆53Updated last year
• SafeBreach-Labs / CortexVortex
  ☆79Updated last year
• Kudaes / CustomEntryPoint
  Select any exported function in a dll as the new dll's entry point.
  ☆81Updated 10 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆81Updated 2 years ago
• decoder-it / RelabelAbuse
  ☆61Updated last year
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆112Updated last year
• synacktiv / keebcap
  Win32 keylogger that supports all (non-ime using) languages correctly
  ☆50Updated last year
• Slowerzs / CryptDecryptMemory
  ☆31Updated 8 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆73Updated 4 months ago
• Wh04m1001 / GamingServiceEoP5
  ☆28Updated last year
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆73Updated last month
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 7 months ago
• tijme / conferences
  Some of the presentations, workshops, and labs I gave at public conferences.
  ☆33Updated 3 months ago
• codewhitesec / SysmonEnte
  ☆74Updated 2 years ago
• NVISOsecurity / Interceptor
  Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space
  ☆124Updated 2 years ago
• mansk1es / GhostFart
  ☆137Updated 2 years ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated 10 months ago
• OtterHacker / Hooker
  ☆108Updated 9 months ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆40Updated 2 years ago
• eversinc33 / Godmode
  Tool for playing with Windows Access Token manipulation.
  ☆55Updated 2 years ago
• MaorSabag / Paruns-Fart
  Just another ntdll unhooking using Parun's Fart technique
  ☆75Updated 2 years ago
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆44Updated 7 months ago
• lap1nou / CLR_Heap_encryption
  ☆100Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆63Updated last year
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆120Updated last year
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆114Updated 11 months ago
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆76Updated 7 months ago
• 0x00Check / ExploitLeakedHandle
  Identify and exploit leaked handles for local privilege escalation.
  ☆109Updated 2 years ago