Alternatives and similar repositories for meow

Users that are interested in meow are comparing it to the libraries listed below

• itaymigdal / awesome-injection
  Centralized resource for listing and organizing known injection techniques and POCs
  ☆577Updated 3 weeks ago
• dobin / avred
  Analyse your malware to surgically obfuscate it
  ☆474Updated 3 weeks ago
• CodeXTF2 / maldev-links
  My collection of malware dev links
  ☆274Updated last week
• Faran-17 / Windows-Internals
  Important notes and topics on my journey towards mastering Windows Internals
  ☆394Updated last year
• Maldev-Academy / MaldevAcademyLdr.1
  ☆354Updated last year
• eversinc33 / Banshee
  Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
  ☆540Updated last month
• dobin / RedEdr
  Collect Windows telemetry for Maldev
  ☆356Updated 4 months ago
• Offensive-Panda / ProcessInjectionTechniques
  This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…
  ☆382Updated last month
• Maldev-Academy / HellHall
  Performing Indirect Clean Syscalls
  ☆558Updated 2 years ago
• Cracked5pider / LdrLibraryEx
  A small x64 library to load dll's into memory.
  ☆443Updated last year
• reveng007 / DarkWidow
  Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
  ☆688Updated 3 months ago
• Krypteria / AtlasLdr
  Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
  ☆370Updated 8 months ago
• cocomelonc / peekaboo
  Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.
  ☆247Updated 7 months ago
• kleiton0x00 / Proxy-DLL-Loads
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆346Updated 4 months ago
• trickster0 / TartarusGate
  TartarusGate, Bypassing EDRs
  ☆590Updated 3 years ago
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆285Updated 2 months ago
• VirtualAlllocEx / Direct-Syscalls-vs-Indirect-Syscalls
  The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls
  ☆195Updated last year
• Maldev-Academy / Christmas
  ☆257Updated last year
• Offensive-Panda / RWX_MEMEORY_HUNT_AND_INJECTION_DV
  Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
  ☆285Updated last year
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆272Updated 2 months ago
• 0xHossam / KernelCallbackTable-Injection-PoC
  Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…
  ☆226Updated 7 months ago
• rad9800 / BootExecuteEDR
  ☆397Updated 6 months ago
• An0nUD4Y / AV-EDR-Lab-Environment-Setup
  AV/EDR Lab environment setup references to help in Malware development
  ☆388Updated 4 months ago
• Helixo32 / CrimsonEDR
  Simulate the behavior of AV/EDR for malware development training.
  ☆530Updated last year
• dslee2022 / SignatureKid
  ☆208Updated last week
• BlackSnufkin / BYOVD
  Some POCs for my BYOVD research and find some vulnerable drivers
  ☆248Updated last week
• vxCrypt0r / Voidmaw
  A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…
  ☆314Updated 8 months ago
• MalwareTech / EDR-Preloader
  An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
  ☆501Updated last year
• vxCrypt0r / Voidgate
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆523Updated last year
• d456h / IconJector
  Unorthodox and stealthy way to inject a DLL into the explorer using icons
  ☆320Updated last month