Alternatives and similar repositories for GoodKit

Users that are interested in GoodKit are comparing it to the libraries listed below

• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• OtterHacker / Hooker
  ☆108Updated last year
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆83Updated last year
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated last year
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆62Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆72Updated last year
• kleiton0x00 / RtlHijack
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆78Updated 5 months ago
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆42Updated 10 months ago
• kr0tt / EarlyExceptionHandling
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆136Updated 5 months ago
• Cracked5pider / kaine-assembly
  a demo module for the kaine agent to execute and inject assembly modules
  ☆41Updated last year
• NoahKirchner / speedloader
  Rust template/library for implementing your own COFF loader
  ☆71Updated last year
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated last year
• rbmm / SC
  shell code example
  ☆67Updated last month
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆103Updated 2 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆44Updated 2 years ago
• mannyfred / MentalTi
  Mentally ill EtwTi parser
  ☆66Updated 3 weeks ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆80Updated last year
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated 2 years ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆54Updated 8 months ago
• synacktiv / keebcap
  Win32 keylogger that supports all (non-ime using) languages correctly
  ☆53Updated 2 years ago
• Teach2Breach / hollow_rs
  A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.
  ☆30Updated last year
• xRedCodex / BofArsenal
  The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23
  ☆23Updated 7 months ago
• silentwarble / Hannibal
  Mythic C2 Agent written in x64 PIC C
  ☆84Updated last year
• hwbp / LazyHook
  Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.
  ☆129Updated last month
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆44Updated last year
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆49Updated 3 years ago
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆32Updated last year
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆50Updated 2 years ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Updated last year