Alternatives and similar repositories for vx

Users that are interested in vx are comparing it to the libraries listed below

• am0nsec / wspe
  Windows System Programming Experiments
  ☆218Updated 3 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆255Updated 3 years ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆179Updated 2 months ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆229Updated 6 months ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆109Updated 4 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆135Updated 3 months ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• commial / experiments
  Expriments
  ☆463Updated 8 months ago
• rad9800 / WTSRM
  WTSRM
  ☆212Updated 2 years ago
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆400Updated 4 months ago
• JLospinoso / cpp-implant
  A simple implant showcasing modern C++
  ☆106Updated 4 years ago
• Cracked5pider / KaynLdr
  KaynLdr is a Reflective Loader written in C/ASM
  ☆540Updated last year
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆188Updated last year
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆457Updated 3 years ago
• hfiref0x / WDExtract
  Extract Windows Defender database from vdm files and unpack it
  ☆443Updated last week
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆165Updated 2 months ago
• Cracked5pider / conti_locker
  Conti Locker source code
  ☆194Updated 3 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆222Updated 2 years ago
• CCob / SylantStrike
  Simple EDR implementation to demonstrate bypass
  ☆173Updated 5 years ago
• SolomonSklash / SleepyCrypt
  A shellcode function to encrypt a running process image when sleeping.
  ☆339Updated 3 years ago
• br-sn / CheekyBlinder
  Enumerating and removing kernel callbacks using signed vulnerable drivers
  ☆566Updated 2 years ago
• NtRaiseHardError / Antimalware-Research
  Research on Anti-malware and other related security solutions
  ☆259Updated 4 years ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆225Updated 5 years ago
• daem0nc0re / AtomicSyscall
  Tools and PoCs for Windows syscall investigation.
  ☆361Updated 2 weeks ago
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆755Updated last year
• hasherezade / process_doppelganging
  My implementation of enSilo's Process Doppelganging (PE injection technique)
  ☆620Updated 2 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆70Updated 3 years ago
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆366Updated 3 years ago
• rad9800 / misc
  miscellaneous scripts and programs
  ☆245Updated 5 months ago
• crummie5 / FreshyCalls
  FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!
  ☆336Updated 2 years ago