Alternatives and similar repositories for theArk:

Users that are interested in theArk are comparing it to the libraries listed below

• aaaddress1 / shellDev.py
  tool for building windows shellcode in C by MinGW
  ☆52Updated 3 years ago
• aaaddress1 / puzzCode
  simple compiler based on mingw to build uncrackable windows application against analysis tools
  ☆63Updated 7 years ago
• MoePus / wowHijack
  Run some secret code invisible from debugger single step.(x86 process on x64 windows only)
  ☆24Updated 4 years ago
• zeze-zeze / 2023iThome
  ☆30Updated 3 months ago
• zeze-zeze / CYBERSEC2023-BYOVD-Demo
  ☆29Updated last year
• gmh5225 / LetMeGG
  POC about how to prevent windbg break
  ☆15Updated 2 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆60Updated 4 years ago
• aaaddress1 / wowGrail
  PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)
  ☆103Updated 3 years ago
• zeze-zeze / WindowsKernelVuln
  ☆49Updated last year
• zeze-zeze / NamedPipeMaster
  a tool used to analyze and monitor in named pipes
  ☆157Updated 4 months ago
• aaaddress1 / winInject101
  Windows Injection 101: from Zero to ROP (HITCON 2017)
  ☆28Updated 7 years ago
• aaaddress1 / Win-Exploit-Inject
  PoC for DEF CON 26: Playing Malware Injection with Exploit thoughts
  ☆23Updated 6 years ago
• Cerbersec / HDE64
  Hacker Disassembler Engine 64 Copyright (c) 2008-2009, Vyacheslav Patkov. * All rights reserved.
  ☆47Updated 3 years ago
• 25077667 / XORList
  XORList: Efficient C++ Linked List (No-throw by default)
  ☆11Updated 8 months ago
• aaaddress1 / The-Purified-Elements
  The Purified Windows 11: without Defender, Updater, Patches, System Health, etc.
  ☆46Updated last year
• zeze-zeze / 2021iThome
  2021 iThome 鐵人賽
  ☆46Updated last year
• aaaddress1 / SignThief
  Windows PE Signature Thief in C++
  ☆48Updated 4 years ago
• aaaddress1 / wowInjector
  PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)
  ☆160Updated 3 years ago
• ihack4falafel / ROR13HashGenerator
  C# implementation to produce ROR-13 numeric hash for given function API name
  ☆31Updated 5 years ago
• LJP-TW / JITHook
  ☆46Updated 2 years ago
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆41Updated 9 years ago
• MoePus / SPiCall
  Yet another windows syscall library
  ☆18Updated 4 years ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆52Updated 7 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆70Updated last year
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆97Updated 4 years ago
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆74Updated 4 years ago
• jeperez / WinREPL
  x86 and x64 assembly "read-eval-print loop" for Windows
  ☆28Updated 7 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104Updated 4 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆85Updated 9 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆54Updated 3 years ago