Alternatives and similar repositories for FreeBSD-Rootkit

Users that are interested in FreeBSD-Rootkit are comparing it to the libraries listed below

• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆341Updated 2 years ago
• rsmudge / vncdll
  Stand-alone VNC server compiled as a Reflective DLL
  ☆192Updated 6 years ago
• neox41 / go-procinject
  Process Injection Techniques with Golang
  ☆79Updated 5 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆185Updated 8 years ago
• 0x9ef / golang-uacbypasser
  Windows UAC bypass techniques implemented and written in Go
  ☆213Updated 3 years ago
• EddieIvan01 / win32api-practice
  Offensive tools written for practice purposes
  ☆160Updated 2 years ago
• forrest-orr / phantom-dll-hollower-poc
  Phantom DLL hollowing PoC
  ☆362Updated 3 years ago
• trustedsec / ELFLoader
  ☆274Updated 3 years ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• ly4k / CallbackHell
  Exploit for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)
  ☆469Updated 3 years ago
• Egida / kek
  ☆77Updated last year
• mai1zhi2 / SysWhispers2_x86
  X86 version of syswhispers2 / x86 direct system call
  ☆325Updated 4 years ago
• daVinci13 / Exe2shell
  Converts exe to shellcode.
  ☆110Updated last year
• marpie / signed-loaders
  signed-loaders documents Windows executables that can be used for side-loading DLLs.
  ☆68Updated 6 years ago
• BelodedAleksey / go_libpeconv
  Golang version of https://github.com/hasherezade/libpeconv
  ☆27Updated 5 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆153Updated 5 years ago
• abdullah2993 / go-runpe
  execute a PE in the address space of another PE aka process hollowing
  ☆57Updated 3 years ago
• Binject / universal
  Universal Shared Library User-space Loader
  ☆229Updated 3 years ago
• Signal-Labs / NtdllUnpatcher
  Example code for EDR bypassing
  ☆150Updated 6 years ago
• yusufqk / SystemToken
  Steal privileged token to obtain SYSTEM shell
  ☆250Updated 5 years ago
• 0xfffffffa / apache-rootkit
  A malicious Apache module with rootkit functionality
  ☆1Updated 10 years ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆62Updated 2 years ago
• timwhitez / Doge-sRDI
  Shellcode implementation of Reflective DLL Injection by Golang. Convert DLLs to position independent shellcode
  ☆60Updated 4 years ago
• csandker / inMemoryShellcode
  A Collection of In-Memory Shellcode Execution Techniques for Windows
  ☆150Updated 5 years ago
• sailay1996 / RpcSsImpersonator
  Privilege Escalation Via RpcSs svc
  ☆180Updated 3 years ago
• lesnuages / go-execute-assembly
  Allow a Go process to dynamically load .NET assemblies
  ☆149Updated 5 years ago
• aus / gopherheaven
  Go implementation of the Heaven's Gate technique
  ☆98Updated 4 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆240Updated 6 months ago
• EgeBalci / Hook_API
  Assembly block for hooking windows API functions.
  ☆92Updated 6 years ago
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆166Updated 3 years ago