Alternatives and similar repositories for FreeBSD-Rootkit

Users that are interested in FreeBSD-Rootkit are comparing it to the libraries listed below

• 0x9ef / golang-uacbypasser
  Windows UAC bypass techniques implemented and written in Go
  ☆216Updated 3 years ago
• ctxis / DLLHSC
  DLLHSC - DLL Hijack SCanner a tool to assist with the discovery of suitable candidates for DLL Hijacking
  ☆156Updated 5 years ago
• neox41 / go-procinject
  Process Injection Techniques with Golang
  ☆80Updated 5 years ago
• BelodedAleksey / go_libpeconv
  Golang version of https://github.com/hasherezade/libpeconv
  ☆29Updated 6 years ago
• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆357Updated 3 years ago
• EgeBalci / Hook_API
  Assembly block for hooking windows API functions.
  ☆94Updated 6 years ago
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆169Updated 4 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆158Updated 5 years ago
• forrest-orr / phantom-dll-hollower-poc
  Phantom DLL hollowing PoC
  ☆370Updated 3 years ago
• kerbyj / goLazagne
  Go library for credentials recovery
  ☆224Updated 3 years ago
• rsmudge / vncdll
  Stand-alone VNC server compiled as a Reflective DLL
  ☆198Updated 6 years ago
• Error996 / bdvl
  bdvl
  ☆115Updated 3 years ago
• sailay1996 / RpcSsImpersonator
  Privilege Escalation Via RpcSs svc
  ☆180Updated 4 years ago
• forrest-orr / artifacts-kit
  Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windo…
  ☆233Updated last year
• APTortellini / DefenderSwitch
  Stop Windows Defender using the Win32 API
  ☆193Updated 4 years ago
• D00MFist / Go4aRun
  Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process
  ☆231Updated 5 years ago
• Ondrik8 / byPass_AV
  ☆155Updated 4 years ago
• lawiet47 / STFUEDR
  Silence EDRs by removing kernel callbacks
  ☆240Updated 5 years ago
• lesnuages / go-execute-assembly
  Allow a Go process to dynamically load .NET assemblies
  ☆150Updated 5 years ago
• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆241Updated last year
• ioncodes / CVE-2020-16938
  Bypassing NTFS permissions to read any files as unprivileged user.
  ☆190Updated 5 years ago
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆80Updated 5 years ago
• marpie / signed-loaders
  signed-loaders documents Windows executables that can be used for side-loading DLLs.
  ☆70Updated 7 years ago
• AzAgarampur / byeintegrity2-uac
  Bypass UAC by abusing the Internet Explorer Add-on installer
  ☆57Updated 4 years ago
• boku7 / injectEtwBypass
  CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)
  ☆301Updated 4 years ago
• mai1zhi2 / SysWhispers2_x86
  X86 version of syswhispers2 / x86 direct system call
  ☆330Updated 5 years ago
• aus / gopherheaven
  Go implementation of the Heaven's Gate technique
  ☆101Updated 4 years ago
• ly4k / CallbackHell
  Exploit for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)
  ☆480Updated 4 years ago
• csandker / inMemoryShellcode
  A Collection of In-Memory Shellcode Execution Techniques for Windows
  ☆152Updated 6 years ago
• abdullah2993 / go-runpe
  execute a PE in the address space of another PE aka process hollowing
  ☆60Updated 4 years ago