Alternatives and similar repositories for Deobfuscar:

Users that are interested in Deobfuscar are comparing it to the libraries listed below

• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆51Updated 7 months ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆48Updated last year
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• xalicex / LOLDrivers_finder
  ☆78Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆76Updated 7 months ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• Slowerzs / CryptDecryptMemory
  ☆29Updated 3 months ago
• joe-desimone / rep-research
  ☆70Updated 7 months ago
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆38Updated 2 months ago
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆47Updated last year
• passthehashbrowns / VectoredExceptionHandling
  ☆85Updated 6 months ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated last year
• EgeBalci / syscall_api
  ☆37Updated last year
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆74Updated last year
• persistent-security / hermes-the-messenger
  A PoC for achieving persistence via push notifications on Windows
  ☆46Updated last year
• dxxzero / rusty_drivers
  BYOVD collection
  ☆23Updated last year
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated last year
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆59Updated 7 months ago
• rasta-mouse / KerbApp
  ☆28Updated 9 months ago
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆34Updated 3 months ago
• HulkOperator / AuthStager
  ☆53Updated 4 months ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• NUL0x4C / EtwSessionHijacking
  A Poc on blocking Procmon from monitoring network events
  ☆100Updated 2 years ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆56Updated last year
• kyleavery / pendulum
  Linux Sleep Obfuscation
  ☆94Updated last year
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆80Updated 5 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆76Updated last year