Alternatives and similar repositories for windows-exploitation

Users that are interested in windows-exploitation are comparing it to the libraries listed below

• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆124Updated last year
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆98Updated 11 months ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆222Updated last year
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• ByteHackr / WindowsExploitation
  A curated list of awesome Windows Exploitation resources, and shiny things.
  ☆76Updated 7 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆253Updated 3 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆144Updated 2 years ago
• therealdreg / x64dbg-exploiting
  Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
  ☆89Updated last year
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆180Updated 3 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆227Updated 2 years ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 10 months ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆210Updated 2 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆108Updated 4 years ago
• ayoubfaouzi / windows-internals
  My notes while studying Windows internals
  ☆427Updated 5 months ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆178Updated last month
• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆148Updated 2 years ago
• struppigel / hedgehog-tools
  ☆114Updated last month
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆392Updated 3 weeks ago
• enkomio / thematrix
  a PE Loader and Windows API tracer. Useful in malware analysis.
  ☆139Updated 2 years ago
• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆207Updated 3 years ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆203Updated last month
• am0nsec / wspe
  Windows System Programming Experiments
  ☆218Updated 2 years ago
• husseinmuhaisen / Hypervisor
  A comprehensive Hypervisor resources repo
  ☆108Updated last week
• raminfp / basic-windows-kernel-programming
  Windows Kernel Programming
  ☆129Updated 5 years ago
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆397Updated 4 months ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆225Updated 4 years ago
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆193Updated last year
• kkent030315 / PageTableInjection
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆238Updated 3 years ago
• ionescu007 / clfs-docs
  Unofficial Common Log File System (CLFS) Documentation
  ☆177Updated 3 years ago