Alternatives and similar repositories for poly

Users that are interested in poly are comparing it to the libraries listed below

• amitschendel / venom-rootkit
  A simple Windows kernel rootkit.
  ☆96Updated 8 months ago
• alal4465 / Win_Rootkit
  A kernel-mode rootkit with remote control
  ☆221Updated 5 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆26Updated 6 years ago
• adamhlt / Process-Hollowing
  Process Hollowing in C++ (x86 / x64) - Process PE image replacement
  ☆177Updated 2 years ago
• li4321 / GhostInjector
  ☆46Updated last year
• jwbensley / metamorphic_polymorphic
  Examples of Metamorphic and Polymorphic code
  ☆35Updated 5 years ago
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆72Updated 4 years ago
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆43Updated 11 months ago
• danielkrupinski / KernelProcessList
  Example Windows Kernel-mode Driver which enumerates running processes.
  ☆60Updated 3 years ago
• DarxiSR / CRYLINE-v5.0
  Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes on…
  ☆58Updated 8 months ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆108Updated 3 years ago
• TheMalwareGuardian / Abismo
  [ARCHIVED] Early work on Abyss (Windows UEFI Bootkit).
  ☆41Updated 5 months ago
• MahmoudZohdy / Process-Injection-Techniques
  Various Process Injection Techniques
  ☆163Updated 3 years ago
• NMan1 / RAT-Trojan
  Advanced Remote Access Trojan & Server
  ☆38Updated 4 years ago
• adamhlt / IAT-Hooking
  IAT Hooking POC (x86 / x64) - Hook functions through the IAT
  ☆36Updated last year
• SwenenzY / section-obfuscation
  PE Header (.rdata,.data,.text) obsfucation
  ☆36Updated 3 years ago
• emlinhax / dse_hook
  load unsigned kernel-driver by patching dse in 248 lines
  ☆139Updated last year
• TheAenema / hm-pe-packer
  A x64 PE Packer/Protector Developed in C++ and VisualStudio
  ☆55Updated 2 years ago
• jussihi / SMM-Rootkit
  SMM rootkit similar to LoJax or MosaicRegressor
  ☆145Updated 2 years ago
• adamhlt / Basic-Rootkit
  POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
  ☆62Updated 2 years ago
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆146Updated 3 years ago
• Zpes / mouse-input-injection
  ☆45Updated 4 years ago
• 4l3x777 / dse_pg_bypass
  DSE & PG bypass via BYOVD attack
  ☆77Updated 6 months ago
• NotRequiem / antidbg
  C/C++ antidebugging library for Windows
  ☆51Updated 2 months ago
• kkent030315 / MsIoExploit
  Exploit MsIo vulnerable driver
  ☆124Updated 4 years ago
• Rhydon1337 / windows-kernel-process-protector
  Protect a process from code injection, termination and hooking
  ☆49Updated 4 years ago
• fengjixuchui / khaleesi
  Anti-debug library based on al-khaser with ScyllaHide/TitanHide detection.
  ☆63Updated 6 years ago
• XShar / Win_API_Obfuscation
  Скрытие Win API
  ☆27Updated 6 years ago
• roomyoni / arp_hooking
  Using ioctl major function swaps to "spoof" the ARP table
  ☆15Updated last year
• Tserith / Parasite
  Compact MBR Bootkit for Windows
  ☆52Updated 4 years ago