Alternatives and similar repositories for vx

Users that are interested in vx are comparing it to the libraries listed below

• am0nsec / wspe
  Windows System Programming Experiments
  ☆220Updated 3 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆257Updated 3 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆229Updated 7 months ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆188Updated last year
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆109Updated 4 years ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆179Updated 2 months ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆149Updated 2 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆135Updated 4 months ago
• Cracked5pider / conti_locker
  Conti Locker source code
  ☆194Updated 3 years ago
• 0xpat / 0xpat.github.io
  0xpat blog
  ☆100Updated 3 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆128Updated last year
• JLospinoso / cpp-implant
  A simple implant showcasing modern C++
  ☆106Updated 4 years ago
• commial / experiments
  Expriments
  ☆465Updated 9 months ago
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆457Updated 3 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆225Updated 2 years ago
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆419Updated last year
• CCob / SylantStrike
  Simple EDR implementation to demonstrate bypass
  ☆173Updated 5 years ago
• kymb0 / Malware_learns
  ☆133Updated 2 years ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆225Updated 5 years ago
• ars3n11 / MineSweeper
  Windows user-land hooks manipulation tool.
  ☆144Updated 4 years ago
• reevesrs24 / EvasiveProcessHollowing
  Evasive Process Hollowing Techniques
  ☆141Updated 4 years ago
• rad9800 / WTSRM
  WTSRM
  ☆213Updated 2 years ago
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆400Updated 5 months ago
• LloydLabs / Windows-API-Hashing
  This is a simple example and explanation of obfuscating API resolution via hashing
  ☆235Updated 5 years ago
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆222Updated 2 years ago
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆216Updated 2 years ago
• hasherezade / module_overloading
  A more stealthy variant of "DLL hollowing"
  ☆350Updated last year
• hfiref0x / WDExtract
  Extract Windows Defender database from vdm files and unpack it
  ☆444Updated 3 weeks ago
• br-sn / CheekyBlinder
  Enumerating and removing kernel callbacks using signed vulnerable drivers
  ☆566Updated 2 years ago