Alternatives and similar repositories for processrefund

Users that are interested in processrefund are comparing it to the libraries listed below

• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆187Updated 7 years ago
• GradiusX / HEVD-Python-Solutions
  Python solutions for the HackSysTeam Extreme Vulnerable Driver
  ☆152Updated 4 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆215Updated 4 years ago
• hzphreak / VMInjector
  DLL Injection tool to unlock guest VMs
  ☆237Updated 12 years ago
• sensepost / gdi-palettes-exp
  DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects
  ☆145Updated 7 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆118Updated 8 years ago
• hegusung / AVSignSeek
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆314Updated 7 years ago
• atxsinn3r / amsiscanner
  A C/C++ implementation of Microsoft's Antimalware Scan Interface
  ☆182Updated 7 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆178Updated 6 years ago
• rxwx / CVE-2018-0802
  PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
  ☆270Updated 7 years ago
• FuzzySecurity / HackSysTeam-PSKernelPwn
  ☆141Updated 8 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆264Updated 8 years ago
• hlldz / APC-PPID
  Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.
  ☆158Updated 6 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆184Updated 6 years ago
• ustayready / CasperStager
  PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.
  ☆151Updated 6 years ago
• 3gstudent / CLR-Injection
  Use CLR to inject all the .NET apps
  ☆184Updated 4 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 6 years ago
• HexHive / malWASH
  ☆115Updated 8 years ago
• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆64Updated 7 years ago
• 3gstudent / Inject-dll-by-Process-Doppelganging
  Process Doppelgänging
  ☆158Updated 7 years ago
• DimopoulosElias / alpc-mmc-uac-bypass
  UAC Bypass with mmc via alpc
  ☆156Updated 6 years ago
• 3ndG4me / Win10-LPE
  The Windows 10 LPE exploit written by SandboxEscaper
  ☆109Updated 6 years ago
• FSecureLABS / CVE-2016-7255
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆81Updated 8 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆152Updated 2 years ago
• FuzzySecurity / DefCon25
  UAC 0day, all day!
  ☆279Updated 7 years ago
• mattifestation / PIC_Bindshell
  Position Independent Windows Shellcode Written in C
  ☆298Updated 6 years ago
• leeqwind / HolicPOC
  POC and exploitation of vulnerabilities
  ☆91Updated 3 years ago
• secrary / InfectPE
  InfectPE - Inject custom code into PE file [This project is not maintained anymore]
  ☆325Updated 8 years ago
• zeroSteiner / reflective-polymorphism
  Reflective Polymorphism
  ☆104Updated 7 years ago
• cbayet / Exploit-CVE-2017-6008
  Exploits for CVE-2017-6008, a kernel pool buffer overflow leading to privilege escalation.
  ☆119Updated 8 months ago