Alternatives and similar repositories for vx

Users that are interested in vx are comparing it to the libraries listed below

• am0nsec / wspe
  Windows System Programming Experiments
  ☆222Updated 3 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆234Updated 11 months ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆260Updated 4 years ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆191Updated 2 years ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆184Updated 7 months ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆112Updated 4 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆233Updated 2 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆131Updated 2 years ago
• NtRaiseHardError / Antimalware-Research
  Research on Anti-malware and other related security solutions
  ☆262Updated 5 years ago
• Cracked5pider / conti_locker
  Conti Locker source code
  ☆197Updated 3 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆137Updated last week
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆458Updated 4 years ago
• JLospinoso / cpp-implant
  A simple implant showcasing modern C++
  ☆108Updated 4 years ago
• EgeBalci / WSAAcceptBackdoor
  Winsock accept() Backdoor Implant.
  ☆118Updated 4 years ago
• commial / experiments
  Expriments
  ☆475Updated last year
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆419Updated 4 months ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆227Updated 5 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆74Updated 3 years ago
• hfiref0x / WDExtract
  Extract Windows Defender database from vdm files and unpack it
  ☆469Updated 3 months ago
• rad9800 / WTSRM
  WTSRM
  ☆216Updated 3 years ago
• PELock / Simple-Polymorphic-Engine-SPE32
  Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used …
  ☆154Updated 2 years ago
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆436Updated last year
• ars3n11 / MineSweeper
  Windows user-land hooks manipulation tool.
  ☆146Updated 4 years ago
• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆150Updated 3 years ago
• kymb0 / Malware_learns
  ☆133Updated 2 years ago
• jonaslyk / exploitkitpub
  ☆97Updated 3 years ago
• 0xpat / 0xpat.github.io
  0xpat blog
  ☆107Updated 4 years ago
• y11en / FOLIAGE
  Experiment on reproducing Obfuscate & Sleep
  ☆154Updated 4 years ago
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆221Updated 2 years ago
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆217Updated 3 years ago