Alternatives and similar repositories for vx

Users that are interested in vx are comparing it to the libraries listed below

• am0nsec / wspe
  Windows System Programming Experiments
  ☆223Updated 3 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆235Updated last year
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆260Updated 4 years ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆193Updated 2 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆111Updated 4 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆138Updated 2 months ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆236Updated 2 years ago
• hfiref0x / WDExtract
  Extract Windows Defender database from vdm files and unpack it
  ☆473Updated 6 months ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆188Updated 9 months ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆133Updated 2 years ago
• NtRaiseHardError / Antimalware-Research
  Research on Anti-malware and other related security solutions
  ☆264Updated 5 years ago
• Cracked5pider / conti_locker
  Conti Locker source code
  ☆198Updated 3 years ago
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆458Updated 4 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆74Updated 3 years ago
• JLospinoso / cpp-implant
  A simple implant showcasing modern C++
  ☆108Updated 5 years ago
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆426Updated 6 months ago
• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆150Updated 3 years ago
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆224Updated 2 years ago
• commial / experiments
  Expriments
  ☆479Updated last year
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆131Updated 2 years ago
• kymb0 / Malware_learns
  ☆135Updated 2 years ago
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆221Updated 3 years ago
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆441Updated last year
• jonaslyk / exploitkitpub
  ☆98Updated 4 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆72Updated 7 years ago
• PELock / Simple-Polymorphic-Engine-SPE32
  Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used …
  ☆154Updated 2 years ago
• hasherezade / module_overloading
  A more stealthy variant of "DLL hollowing"
  ☆363Updated last year
• ars3n11 / MineSweeper
  Windows user-land hooks manipulation tool.
  ☆146Updated 4 years ago
• rad9800 / WTSRM
  WTSRM
  ☆216Updated 3 years ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆227Updated 5 years ago