Alternatives and similar repositories for PInvoke:

Users that are interested in PInvoke are comparing it to the libraries listed below

• trustedsec / CS_COFFLoader
  ☆128Updated last year
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆80Updated last year
• Shrfnt77 / AmsiBypass
  Bypassing Amsi using LdrLoadDll
  ☆44Updated 4 months ago
• SECFORCE / SharpWhispers
  C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.
  ☆105Updated 2 years ago
• securifybv / BOFRyptor
  ☆123Updated last year
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆58Updated 3 months ago
• MzHmO / DebugAmsi
  DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
  ☆97Updated last year
• michaelweber / CSharpSourceObfuscator
  A C# Solution Source Obfuscator for avoiding AV signatures with minimal user interaction. Powered by the Roslyn C# library.
  ☆75Updated last month
• rasta-mouse / CsWhispers
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆180Updated last year
• leftp / BackupCreds
  A C# implementation of dumping credentials from Windows Credential Manager
  ☆57Updated last year
• OtterHacker / SetProcessInjection
  ☆151Updated last year
• xpn / CloudInject
  ☆110Updated 5 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆72Updated last month
• CCob / ProvisionAppx
  ☆39Updated 2 years ago
• rasta-mouse / DInvoke
  Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
  ☆159Updated last year
• GetRektBoy724 / SharpHalos
  My implementation of Halo's Gate technique in C#
  ☆54Updated 3 years ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆113Updated 2 years ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆116Updated 5 months ago
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆151Updated last year
• ScriptIdiot / SysmonQuiet
  RDLL for Cobalt Strike beacon to silence sysmon process
  ☆88Updated 2 years ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆101Updated last year
• MaorSabag / Paruns-Fart
  Just another ntdll unhooking using Parun's Fart technique
  ☆75Updated 2 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆84Updated 2 years ago
• 0xv1n / RemoteSessionEnum
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆117Updated 8 months ago
• klezVirus / NimlineWhispers3
  A tool for converting SysWhispers3 syscalls for use with Nim projects
  ☆146Updated 2 years ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆84Updated last month
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆83Updated 3 years ago
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆62Updated last year
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆89Updated 10 months ago