Alternatives and similar repositories for booty

Users that are interested in booty are comparing it to the libraries listed below

• kysam / NhoVirtualizer
  A simple native code virtualizer for 32-bit Windows PE
  ☆15Updated 9 years ago
• owerosu / packerPE32
  Simple PE packer with RtlCompressBuffer
  ☆21Updated 10 years ago
• ScorchSecurity / Toast
  User-mode hook bypassing method
  ☆33Updated 9 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 8 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆52Updated 7 years ago
• emc2314 / PEZEncrypt
  PE Infector/Cryptor source code
  ☆16Updated 8 years ago
• pfussell / pivotal
  A MITM proxy server for reflective DLL injection through WinINet
  ☆15Updated 7 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆35Updated 8 years ago
• nccgroup / ncloader
  A session-0 capable dll injection utility
  ☆76Updated 7 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆35Updated 8 years ago
• d35ha / xKeLogger
  Kernel mode windows NT API logger
  ☆22Updated 6 years ago
• NoviceLive / shellcoding
  Introduce you to shellcode development.
  ☆23Updated 9 years ago
• codingtest / EMET
  reversed emet tool
  ☆24Updated 13 years ago
• OlSut / Kinject-x64
  Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.
  ☆32Updated 10 years ago
• NextSecurity / Gozi-MBR-rootkit
  Gozi-MBR-rootkit Bootkit Modified
  ☆71Updated 8 years ago
• wekillpeople / metasploit-loader
  metasploit loader with antivirus bypass module
  ☆18Updated 9 years ago
• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆57Updated 7 years ago
• NtRaiseHardError / Anti-Delete
  Protects deletion of files with a specified extension using a kernel-mode driver.
  ☆75Updated 7 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆35Updated 7 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 8 years ago
• wyexe / PELoader
  ☆21Updated 8 years ago
• apriorit / Simple-Antirootkit-SST-Unhooker
  This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
  ☆33Updated 8 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆39Updated 8 years ago
• deroko / activationcontexthook
  ☆34Updated 8 years ago
• wjcsharp / wintools
  A collection of Windows Administrator tools
  ☆18Updated 11 years ago
• aaaddress1 / APCInjector-BYPASS-AV
  ☆19Updated 10 years ago