Alternatives and similar repositories for XrMT

Users that are interested in XrMT are comparing it to the libraries listed below

• affix / rusty-hollow
  Unix Process hollowing in rust
  ☆22Updated 6 months ago
• farfella / in-memory-cpython
  An In-memory Embedding of CPython
  ☆28Updated 4 years ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 7 months ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆49Updated 4 months ago
• Kharos102 / interceptor
  Sample Rust Hooking Engine
  ☆36Updated last year
• NoahKirchner / speedloader
  Rust template/library for implementing your own COFF loader
  ☆50Updated 4 months ago
• nbaertsch / PoolProxy
  Proxy function calls through the thread pool with ease
  ☆29Updated 3 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆60Updated 10 months ago
• bot984397 / eepy
  ☆30Updated 2 months ago
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆59Updated 7 months ago
• HulkOperator / AuthStager
  ☆55Updated 7 months ago
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated 11 months ago
• dxxzero / rusty_drivers
  BYOVD collection
  ☆23Updated last year
• FalconForceTeam / bof-winrm-plugin-jump
  ☆27Updated 5 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆22Updated last year
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆31Updated last year
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆37Updated 3 months ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆32Updated last year
• rasta-mouse / KerbApp
  ☆29Updated last year
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆27Updated last year
• Orange-Cyberdefense / EDRSnowblast
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆23Updated last year
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆62Updated last week
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆50Updated 2 years ago
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆28Updated 4 months ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆49Updated last year
• mdsecactivebreach / PleasantTools
  Tools for Attacking Pleasant Password Server
  ☆22Updated last year
• xelemental / Mal-LNK-Generator
  ☆34Updated 2 months ago
• dmcxblue / NtCreateUserProcessBOF
  An Aggressor Script that utilizes NtCreateUserProcess to run binaries
  ☆30Updated 4 months ago
• OffenseTeacher / Steganim
  ☆48Updated 2 years ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆45Updated last year