Alternatives and similar repositories for SB-Loader

Users that are interested in SB-Loader are comparing it to the libraries listed below

• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆35Updated 3 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆28Updated 2 years ago
• Maff1t / InjectNtdllPOC
  Process Injection without R/W target memory and without creating a remote thread
  ☆19Updated 3 years ago
• cyberark / malware-research
  ☆37Updated 7 months ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆56Updated 2 months ago
• hasherezade / flareon2022
  ☆29Updated 2 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆16Updated 5 years ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆89Updated 3 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆32Updated 2 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆39Updated 3 years ago
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆42Updated 10 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆40Updated 5 years ago
• hasherezade / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆11Updated 2 years ago
• ZeroMemoryEx / Hooks_Hunter
  Simple API Hooks detector
  ☆74Updated 3 years ago
• riskydissonance / SyscallsExample
  Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.
  ☆75Updated 3 years ago
• rad9800 / VehApiResolve
  ☆114Updated 3 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆74Updated 4 years ago
• cocomelonc / 2022-06-05-malware-av-evasion-7
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆35Updated 3 years ago
• blogresponder / Realtek-rtkio64-Windows-driver-privilege-escalation
  A PoC of a privilege escalation vulnerability in the Realtek rtkio64 Windows driver.
  ☆17Updated 5 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• EgeBalci / IAT_API
  Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
  ☆77Updated 2 years ago
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆41Updated 5 years ago
• ZeroMemoryEx / TrampHook
  Simple x86 Trampoline Hook
  ☆42Updated 3 years ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆74Updated last year
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆33Updated last year
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆23Updated 2 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆50Updated 8 years ago
• mathisvickie / CVE-2021-27965
  stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆11Updated 4 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆57Updated 3 years ago