Alternatives and similar repositories for Heap-Injection

Users that are interested in Heap-Injection are comparing it to the libraries listed below

• reveng007 / reveng_loader
  C# loader capable of running stage-1 from remote url, file path as well as file share
  ☆16Updated 2 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆28Updated last year
• susMdT / SharpIndirectSyscalls
  ☆11Updated 2 years ago
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆79Updated 2 years ago
• 0x44F / WinKit
  💻 Windows 10 Kernel-mode rootkit
  ☆32Updated 3 years ago
• LethalSnake1337 / PE-Loader-exercise
  A simple PE loader.
  ☆26Updated 2 years ago
• d1rkmtrr / HadesLdr
  Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
  ☆13Updated 2 years ago
• EvaStanAccount / MalwareDev
  ☆16Updated 3 years ago
• arsium / BypassGetModuleBaseAddressAndGetExportAddress
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆20Updated 3 years ago
• pwn1sher / RTImplant
  Just another casual shellcode native loader
  ☆24Updated 3 years ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆24Updated 5 months ago
• qwqdanchun / RainbowSheep
  Change hash for a signed pe
  ☆16Updated 2 years ago
• XaFF-XaFF / Shellcodev
  Shellcodev is a tool designed to help and automate the process of shellcode creation.
  ☆111Updated last year
• GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
  A repository filled with ideas to break/detect direct syscall techniques
  ☆27Updated 3 years ago
• shaddy43 / AES_Shellcode_Encryptor
  This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…
  ☆16Updated 3 years ago
• ProcessusT / PsNotifRoutineUnloader
  This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…
  ☆63Updated last year
• S12cybersecurity / Admin2Sys
  Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
  ☆60Updated 2 years ago
• XaFF-XaFF / 2Simple-Keylogger
  Simple keylogger written in C# which is ready for modifications.
  ☆14Updated 4 years ago
• loneicewolf / smbdoor
  improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys
  ☆50Updated 2 years ago
• nqntmqmqmb / xorPacker
  A simple packer working with all PE files which cipher your exe with a XOR implementation
  ☆14Updated 5 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Updated 3 years ago
• AlionGreen / apc-injection
  Process Injection: APC Injection
  ☆32Updated 4 years ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆49Updated 3 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆16Updated 5 years ago
• ctxis / DynamicWrapperEx
  x64 Registration-Free In-Process COM Automation Server.
  ☆50Updated 2 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆40Updated 4 years ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆59Updated 3 years ago
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆31Updated 3 years ago
• GetRektBoy724 / NiceTryDLL
  Nice try reading NTDLL from disk, nerd.
  ☆19Updated 3 years ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated 2 years ago