Alternatives and similar repositories for GHRL:

Users that are interested in GHRL are comparing it to the libraries listed below

• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆59Updated last year
• ZeroMemoryEx / URootkit
  user-mode Rootkit
  ☆102Updated 2 years ago
• li4321 / GhostInjector
  ☆40Updated 7 months ago
• hasherezade / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆9Updated last year
• Hemogl0bin / drvscanner
  Scan for potentially vulnerable drivers
  ☆84Updated 2 years ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆27Updated 10 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆53Updated 9 months ago
• 0x44F / WinKit
  💻 Windows 10 Kernel-mode rootkit
  ☆31Updated 2 years ago
• ZeroMemoryEx / TrampHook
  x86 Trampoline Hook
  ☆40Updated 2 years ago
• iilegacyyii / ExportDumper
  A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.
  ☆69Updated 2 years ago
• c3l3si4n / windows_sleep_techniques
  A collections of methods to sleep on Windows using common and less-so-common techniques
  ☆13Updated 5 months ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year
• call-042PE / UCantSeeM3
  Hiding your process in ProcessHacker,Task Manager,etc by patching NtQuerySystemInformation
  ☆86Updated 3 years ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆53Updated 2 years ago
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆100Updated 2 years ago
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits
  ☆23Updated 8 months ago
• li4321 / selfmovingdll
  ☆18Updated last month
• idkhidden / WinApiPatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆41Updated 4 months ago
• aaaddress1 / ntkrnlProtectScan
  One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
  ☆43Updated last year
• HACKE-RC / peritux
  A PE parser written in C++ which does not uses OOP. Helpful if you want to learn about PE parsing.
  ☆16Updated last year
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆27Updated 2 years ago
• dr4k0nia / Greenline
  Unpacker and Config Extractor for managed Redline Stealer payloads
  ☆40Updated last year
• VollRagm / apphost-extract
  Extracts the files embedded inside of a .NET AppHost.
  ☆18Updated 5 months ago
• crvvdev / vac-bypass-kernel
  Fully working kernel-mode VAC bypass
  ☆49Updated 3 months ago
• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆18Updated 2 years ago
• dr4k0nia / simple-string-encryption
  Simple website to automatically generate string encryption/decryption routines for C#
  ☆9Updated 2 years ago
• Azvanzed / vmw-logger-rs
  A VMWare logger using built-in backdoor.
  ☆27Updated 3 months ago
• gelven4sec / NotPetyaAgain
  PoC of a UEFI Petya ransomware
  ☆40Updated 2 years ago