Alternatives and similar repositories for procscan

Users that are interested in procscan are comparing it to the libraries listed below

• Wh04m1001 / RazerEoP
  ☆27Updated 2 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆32Updated 5 years ago
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆54Updated 3 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 3 years ago
• SpecterOps / ipc-research
  Inter-Process Communication Mechanisms
  ☆28Updated 4 years ago
• thiagomayllart / Covenant_Alternate
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆22Updated 4 years ago
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 5 years ago
• 3sjay / sploits
  some sploits
  ☆17Updated 9 months ago
• CERTCC / privesc
  Process Monitor filter for finding privilege escalation vulnerabilities on Windows
  ☆79Updated 4 years ago
• daem0nc0re / HEVD-CSharpKernelPwn
  CSharp Writeups for HackSys Extreme Vulnerable Driver
  ☆43Updated 3 years ago
• Allevon412 / PPL_Sandboxer
  ☆82Updated 3 years ago
• EspressoCake / NativeFunctionStaticMap
  A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.
  ☆28Updated 3 years ago
• MinatoTW / NamedPipeImpersonation
  ☆11Updated 4 years ago
• xpn / ObjectOverloadingPOC
  ☆62Updated 3 years ago
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆31Updated 2 years ago
• Accenture / AARO-Bugs
  Vulnerabilities, exploits, and PoCs
  ☆36Updated last month
• FuzzySecurity / DLL-Template
  Simple skeleton for a CPP DLL
  ☆36Updated 5 years ago
• fashionproof / RunHijackHunter
  ☆17Updated 4 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 3 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• N4kedTurtle / LocalDllParse
  ☆55Updated 3 years ago
• ihack4falafel / Dell-Driver-EoP-CVE-2021-21551
  Dell Driver EoP (CVE-2021-21551)
  ☆32Updated 3 years ago
• grigoritchy / pocs
  ☆72Updated last year
• Wh04m1001 / MSIExecEoP
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆30Updated 2 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 3 years ago
• synacktiv / CacheData_decrypt
  A simple Toolkit to BF and decrypt Windows EntraId CacheData
  ☆18Updated last year
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆38Updated 3 years ago
• hotnops / COM_Mapper
  A tool to create COM class/interface relationships in neo4j
  ☆50Updated 2 years ago
• EvanMcBroom / fuse-loader
  Load a dynamic library from memory using a fuse mount
  ☆31Updated last year
• FuzzySecurity / WWHF-WayWest-2022
  ☆37Updated 3 years ago