Alternatives and similar repositories for covirt

Users that are interested in covirt are comparing it to the libraries listed below

• connorjaydunn / BinaryShield

  View on GitHub
  An x86-64 Code Virtualizer
  ☆303Sep 26, 2024Updated last year
• snowsnowsnows / EagleVM

  View on GitHub
  Native code virtualizer for x64 binaries
  ☆514Dec 20, 2024Updated last year
• SamuelTulach / HookGuard

  View on GitHub
  Hooking Windows' exception dispatcher to protect process's PML4
  ☆225Jan 24, 2025Updated last year
• vxlang / vxlang-page

  View on GitHub
  protector & obfuscator & code virtualizer
  ☆678Feb 8, 2026Updated last week
• can1357 / selene

  View on GitHub
  Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
  ☆408Apr 19, 2025Updated 9 months ago
• RWXstoned / LdrShuffle

  View on GitHub
  Code execution/injection technique using DLL PEB module structure manipulation
  ☆220Jun 4, 2025Updated 8 months ago
• badhive / stitch

  View on GitHub
  Rewrite and obfuscate code in compiled binaries
  ☆272Dec 13, 2025Updated 2 months ago
• ZehMatt / zyemu

  View on GitHub
  x86-64 user mode emulation using Zydis
  ☆72Sep 12, 2025Updated 5 months ago
• killvxk / awesome-obfuscations

  View on GitHub
  ☆73Jul 22, 2025Updated 6 months ago
• oakboat / FuckACEScreenshot

  View on GitHub
  ☆33Aug 26, 2025Updated 5 months ago
• djolertrk / kovid-obfuscation-passes

  View on GitHub
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆138Oct 20, 2025Updated 3 months ago
• keowu / Ryujin

  View on GitHub
  Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool
  ☆302Nov 20, 2025Updated 2 months ago
• ViperXSecurity / lib-nosa

  View on GitHub
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆120Sep 8, 2024Updated last year
• samdspeare / othread

  View on GitHub
  an obfuscator based on LLVM which can obfuscate the program execution trajectory
  ☆106Mar 15, 2021Updated 4 years ago
• jakobfriedl / BenevolentLoader

  View on GitHub
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆102Jun 16, 2024Updated last year
• m417z / thread-call-stack-scanner

  View on GitHub
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆81Jun 21, 2025Updated 7 months ago
• whokilleddb / funcshenanigans

  View on GitHub
  A bunch of shenanigans using functions, VEH and more
  ☆37Jun 8, 2025Updated 8 months ago
• klezVirus / DriverJack

  View on GitHub
  Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
  ☆358Aug 11, 2024Updated last year
• Archie-osu / PowerHook

  View on GitHub
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆73Apr 13, 2025Updated 10 months ago
• jonomango / pe-builder

  View on GitHub
  Header-only C++ library for producing PE files.
  ☆34Jun 17, 2023Updated 2 years ago
• za233 / Polaris-Obfuscator

  View on GitHub
  Polaris: An LLVM-based obfuscator that protects software at various levels
  ☆461Oct 4, 2025Updated 4 months ago
• GANGE666 / xVMP

  View on GitHub
  ☆630May 30, 2023Updated 2 years ago
• backengineering / llvm-msvc

  View on GitHub
  LLVM fork with explicit compatibility with MSVC 2022 features.
  ☆379Feb 3, 2026Updated last week
• Mowokuma / vm_str.hpp

  View on GitHub
  vm_str.hpp is a header only string obfuscator.
  ☆103Aug 24, 2025Updated 5 months ago
• bitdefender / hypervinject-poc

  View on GitHub
  ☆58Jul 31, 2025Updated 6 months ago
• es3n1n / obfuscator

  View on GitHub
  PE (and elf now!) bin2bin obfuscator
  ☆810Oct 11, 2025Updated 4 months ago
• SamuelTulach / Occulto

  View on GitHub
  Proof-of-concept post-build obfuscator for Unity IL2CPP projects
  ☆37Jan 12, 2025Updated last year
• can1357 / xstd

  View on GitHub
  A portable header only library extending the C++20 STL.
  ☆95Apr 18, 2024Updated last year
• eversinc33 / drvtrace

  View on GitHub
  WinDbg plugin to trace module transitions from a debugged driver.
  ☆40Dec 22, 2025Updated last month
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆280Sep 18, 2024Updated last year
• kr0tt / EarlyExceptionHandling

  View on GitHub
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆136Aug 31, 2025Updated 5 months ago
• Chemiculs / qengine

  View on GitHub
  C++ 20 Control Flow Obfuscation library for Windows Binaries
  ☆431Oct 8, 2025Updated 4 months ago
• ac3ss0r / obfusheader.h

  View on GitHub
  Obfusheader.h is a portable header file for C++14 compile-time obfuscation.
  ☆973Aug 19, 2024Updated last year
• x86matthew / WinVisor

  View on GitHub
  WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API
  ☆634Jan 23, 2025Updated last year
• hasherezade / thread_namecalling

  View on GitHub
  Process Injection using Thread Name
  ☆297Apr 18, 2025Updated 9 months ago
• outflanknl / macho-loader

  View on GitHub
  ☆102Sep 5, 2024Updated last year
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• mike1k / perses

  View on GitHub
  X86 Mutation Engine with Portable Executable compatibility.
  ☆532May 24, 2022Updated 3 years ago
• Barracudach / CallStack-Spoofer

  View on GitHub
  This tool will allow you to spoof the return addresses of your functions as well as system functions.
  ☆547Nov 12, 2022Updated 3 years ago