Alternatives and similar repositories for malware-injection

Users that are interested in malware-injection are comparing it to the libraries listed below

• moohax / aiv_workshop_20
  ☆10Updated 4 years ago
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆17Updated 2 years ago
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 3 years ago
• shlyuz / implant_go
  Golang Shlyuz Implant Implementation
  ☆13Updated 2 months ago
• X-C3LL / wfp-reader
  Proof of concept - Covert Channel using Windows Filtering Platform (C#)
  ☆21Updated 3 years ago
• cedowens / Dylib_Runner
  Swift code to run a dylib on disk
  ☆16Updated 3 years ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆20Updated last year
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆32Updated 5 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• moohax / RedML
  Collection of red machine learning projects
  ☆41Updated 3 years ago
• k3idii / CobaltStrike-Tools
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆30Updated 2 years ago
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆23Updated 3 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆16Updated 5 years ago
• CasperGN / MFASweep.py
  Test Azure environment for MFA misconfigurations
  ☆12Updated 2 years ago
• HackingThings / SuperSneakyExec
  Loading and executing shellcode in C# without PInvoke.
  ☆22Updated 3 years ago
• monoxgas / minibus
  Remote code execution in Power Platform connectors via JSON deserialization
  ☆22Updated 2 years ago
• malware-unicorn / macho_shellcode_extractor
  extracts shellcode from a nasm compile macho binary
  ☆16Updated 4 years ago
• corelan / CorelanTraining
  Script(s) to assist with the setup of WinDBG & mona.py on a Windows 10 VM
  ☆27Updated 2 years ago
• shantanu561993 / Awesome_Firebase_DomainFront
  Firebase Domain Front Code
  ☆21Updated 4 years ago
• codewhitesec / apollon
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆22Updated last year
• perturbed-platypus / LinooxMalware
  ☆28Updated 6 years ago
• moohax / Deep-Drop
  Machine learning enabled dropper
  ☆27Updated 2 years ago
• shlyuz / teamserver
  ☆12Updated 3 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 4 years ago
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆13Updated 8 months ago
• moloch-- / wire-transfer
  Encode binary as English text over HTTP(s)
  ☆30Updated last year
• 0xC0D1F1ED / cpp_vs_payload_template
  Visual Studio (C++) Solution Template for Payloads
  ☆18Updated 5 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• OmerYa / ROP-From-Zero-to-Nation-State-In-25-Minutes
  Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)
  ☆15Updated 4 years ago