Alternatives and similar repositories for xObf

Users that are interested in xObf are comparing it to the libraries listed below

• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆322Updated 2 years ago
• nelfo / Milfuscator
  x86 PE Mutator
  ☆219Updated 2 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆150Updated 5 years ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆483Updated 5 months ago
• adrianyy / KeInject
  Kernel LdrLoadDll injector
  ☆260Updated 6 years ago
• weak1337 / NO_ACCESS_Protection
  ☆180Updated 3 years ago
• VollRagm / lpmapper
  A mapper that maps shellcode into loaded large page drivers
  ☆279Updated 3 years ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆332Updated last year
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆270Updated 6 years ago
• hoangprod / LeoSpecial-VEH-Hook
  Vectored Exception Handling Hooking Class
  ☆158Updated 6 years ago
• gmh5225 / CallMeWin32kDriver
  Load your driver like win32k.sys
  ☆253Updated 2 years ago
• SamuelTulach / RwxMeme
  State of the art DLL injector that took 20 minutes to make
  ☆216Updated last year
• AdamOron / PatchGuardBypass
  Bypassing PatchGuard on modern x64 systems
  ☆260Updated 2 years ago
• mike1k / HookHunter
  Analyze patches in a process
  ☆253Updated 3 years ago
• charliewolfe / Stealthy-Kernelmode-Injector
  Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…
  ☆325Updated 3 years ago
• Chemiculs / qengine
  C++ 17 or higher control flow obfuscation library for windows binaries
  ☆358Updated last month
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆201Updated 4 years ago
• connorjaydunn / BinaryShield
  An x86-64 Code Virtualizer
  ☆262Updated 8 months ago
• BadPlayer555 / KernelGDIDraw
  The program draws with win32k gdi functions in the kernel while NtGdiDdDDISubmitCommand is being hooked.
  ☆295Updated 5 years ago
• Barracudach / CallStack-Spoofer
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆483Updated 2 years ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆222Updated 4 years ago
• ccdescipline / CInject
  Windows Kernel inject (no module no thread)
  ☆275Updated 2 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆493Updated 3 years ago
• M-r-J-o-h-n / SWH-Injector
  An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.
  ☆243Updated 5 years ago
• VollRagm / PTView
  Browse Page Tables on Windows (Page Table Viewer)
  ☆202Updated 3 years ago
• Deputation / instrumentation_callbacks
  A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.
  ☆136Updated 3 years ago
• armvirus / SinMapper
  usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …
  ☆427Updated 3 years ago
• Oliver-1-1 / GhostMapper
  ☆289Updated 3 weeks ago
• revsic / cpp-obfuscator
  C++ implementation of compile time obfuscator
  ☆149Updated 5 years ago
• YouNeverKnow00 / Kernelmode-DLL-Injector
  Simple Kernelmode DLL Injector with Manual mapping
  ☆289Updated last year