Alternatives and similar repositories for processrefund

Users that are interested in processrefund are comparing it to the libraries listed below

• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆186Updated 7 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆216Updated 4 years ago
• FuzzySecurity / HackSysTeam-PSKernelPwn
  ☆141Updated 8 years ago
• GradiusX / HEVD-Python-Solutions
  Python solutions for the HackSysTeam Extreme Vulnerable Driver
  ☆152Updated 4 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆182Updated 6 years ago
• sensepost / gdi-palettes-exp
  DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects
  ☆145Updated 7 years ago
• 3gstudent / Inject-dll-by-Process-Doppelganging
  Process Doppelgänging
  ☆157Updated 7 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆118Updated 7 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆178Updated 6 years ago
• HexHive / malWASH
  ☆115Updated 8 years ago
• hlldz / APC-PPID
  Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.
  ☆158Updated 5 years ago
• atxsinn3r / amsiscanner
  A C/C++ implementation of Microsoft's Antimalware Scan Interface
  ☆182Updated 7 years ago
• 3gstudent / CLR-Injection
  Use CLR to inject all the .NET apps
  ☆184Updated 4 years ago
• FSecureLABS / CVE-2016-7255
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆81Updated 8 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• hzphreak / VMInjector
  DLL Injection tool to unlock guest VMs
  ☆235Updated 12 years ago
• FuzzySecurity / DefCon25
  UAC 0day, all day!
  ☆278Updated 7 years ago
• hegusung / AVSignSeek
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆313Updated 7 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆295Updated 10 months ago
• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆62Updated 7 years ago
• can1357 / CVE-2018-8897
  Arbitrary code execution with kernel privileges using CVE-2018-8897.
  ☆413Updated 7 years ago
• rxwx / CVE-2018-0802
  PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
  ☆269Updated 7 years ago
• nccgroup / CVE-2017-8759
  NCC Group's analysis and exploitation of CVE-2017-8759 along with further refinements
  ☆96Updated 7 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆175Updated 4 years ago
• leeqwind / HolicPOC
  POC and exploitation of vulnerabilities
  ☆90Updated 3 years ago
• 0xAlexei / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆298Updated 6 years ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆137Updated 7 years ago
• ustayready / CasperStager
  PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.
  ☆151Updated 6 years ago
• mattifestation / PIC_Bindshell
  Position Independent Windows Shellcode Written in C
  ☆291Updated 6 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆151Updated 2 years ago