Alternatives and similar repositories for Ender-Rat:

Users that are interested in Ender-Rat are comparing it to the libraries listed below

• melardev / XeytanWin32-RAT
  WORK IN PROGRESS. RAT written in C++ using Win32 API
  ☆18Updated 5 years ago
• whobornin1980 / AsyncRAT
  TCP Asynchronous Socket - Remote Administration Tool
  ☆10Updated 6 years ago
• huykingsofm / Packed-Infected-PE
  A tool is used to infected a shellcode to PE file, the shellcode is packed at compile time and unpacked at runtime
  ☆13Updated 4 years ago
• 1M50RRY / runpe-native-loader
  Loader and RunPE file executer
  ☆17Updated 5 years ago
• SLAUC91 / DLLFinder
  Enumerate the DLLs/Modules using NtQueryVirtualMemory
  ☆32Updated 9 years ago
• AzAgarampur / byeintegrity4-uac
  Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers
  ☆18Updated 3 years ago
• xuantungmta / xRAT
  Copy xRAT repository
  ☆22Updated 6 years ago
• wolk-1024 / CrossInject
  x86/x64 dll injector
  ☆30Updated 2 years ago
• rtcrowley / Offensive-Netsh-Helper
  Maintain Windows Persistence with an evil Netshell Helper DLL
  ☆12Updated 6 years ago
• Souhardya / Slavyana
  Windows Sandbox Framework
  ☆37Updated 3 years ago
• HadesW / HttpRAT
  HTTPS GET RAT and Memory Loader
  ☆25Updated 2 years ago
• HFaeiro / Remote-Admin-Tool
  Simple remote administration tool. Written in c++ and MASM.
  ☆18Updated 6 years ago
• oXis / DoublePulsarPayload
  C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.
  ☆29Updated 3 years ago
• smb01 / zxshell
  a open source rat from china
  ☆24Updated 8 years ago
• y11en / PEBFake
  PEBFake(修改PEB 伪装当前进程路径、参数等)
  ☆51Updated 4 years ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆49Updated 3 years ago
• TeskeVirtualSystem / MS17010Test
  MS17-010 Tester
  ☆13Updated 7 years ago
• avarenina / Windows-PE-Injection
  PE Injection with ring3 hook bypass
  ☆10Updated 3 years ago
• ewilded / PPID_spoof
  An example of how to spawn a process with a spoofed parent PID (Visual C++)
  ☆27Updated 6 years ago
• MalwareMechanic / RISCYpacker
  Process Hollowing Packer
  ☆26Updated 7 years ago
• SaltedFishBayonet / Kill-3X0_kill360
  Only for research and learning, not for commercial and illegal use
  ☆10Updated 5 years ago
• whitephone / Windows-Rootkits
  ☆26Updated 7 years ago
• wonderkun / kernalApc
  inject dll from kernal mode to user mode process use Apc
  ☆32Updated 5 years ago
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆22Updated last year
• laomms / EXE2DLL_CLR
  Add export function and convert exe to dll
  ☆25Updated 4 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 4 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 5 years ago
• elddy / Windows-NTAPI-Injector
  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses
  ☆40Updated 4 years ago
• w1u0u1 / Dll2Shellcode
  Convert native dll to shellcode, and support exported function
  ☆22Updated 4 years ago
• decay88 / Tengri_Shellcode_Loader
  Encrypted Shellcode Loader Generator
  ☆22Updated 6 years ago