Alternatives and similar repositories for 11Syscalls:

Users that are interested in 11Syscalls are comparing it to the libraries listed below

• li4321 / selfmovingdll
  ☆19Updated 2 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆53Updated 10 months ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆96Updated last year
• rbmm / TPM
  Easy encrypt/decrypt data with TPM
  ☆25Updated 11 months ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆54Updated 2 years ago
• ch3rn0byl / Gremlins
  ☆14Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• 0xMegaByte / COM-Explained
  ☆25Updated 2 years ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆27Updated 2 months ago
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆61Updated last year
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆26Updated 6 months ago
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆68Updated 3 months ago
• zodiacon / WinEventHooks
  SetWinEventHook Sample
  ☆46Updated last year
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• 0mWindyBug / RansomGuard
  anti-ransomware file-system filter
  ☆56Updated 5 months ago
• zodiacon / MalDevWorkshopWebinar
  Demo from the Malware Analysis and Development Webinar
  ☆20Updated 10 months ago
• jonaslyk / temp
  ☆70Updated last year
• DownWithUp / WarbirdExamples
  An example of how to use Microsoft Windows Warbird technology
  ☆27Updated last year
• nnot09 / direct-syscall
  A simple example on how to initiate a direct syscall on WoW64
  ☆11Updated 7 years ago
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆65Updated 3 years ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated last year
• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆17Updated last year
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆18Updated 2 weeks ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆29Updated last year
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• xalicex / Get-DLL-and-Function-Addresses
  GetModuleHandle (via PEB) and GetProcAddress (via EAT) like
  ☆32Updated 3 years ago
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆44Updated 8 months ago
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits
  ☆23Updated 9 months ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆72Updated 3 years ago