Alternatives and similar repositories for GetSystem

Users that are interested in GetSystem are comparing it to the libraries listed below

• zimnyaa / xyrella
  PoC XLL builder in Python/Nim
  ☆49Updated 3 years ago
• nbaertsch / nimvoke
  Indirect syscalls + DInvoke made simple.
  ☆96Updated last year
• m4ul3r / malware
  malware written for educational purposes
  ☆71Updated last month
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆62Updated 6 months ago
• itaymigdal / GhostNap
  Sleep obfuscation for shellcode implants and their reflective shit
  ☆53Updated 2 years ago
• 0prrr / Malwear-Sweet
  Malware?
  ☆76Updated 3 months ago
• HulkOperator / CallStackSpoofer
  ☆60Updated last year
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆104Updated 11 months ago
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆42Updated 10 months ago
• m4ul3r / writing_nimless
  Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.
  ☆85Updated 6 months ago
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆79Updated 2 years ago
• 0xJs / BYOVD_read_write_primitive
  Proof of Concepts code for Bring Your Own Vulnerable Driver techniques
  ☆204Updated 5 months ago
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated 3 months ago
• zero2504 / COMouflage
  COM-based DLL Surrogate Injection
  ☆140Updated last month
• winterknife / SILVERPICK
  Windows User-Mode Shellcode Development Framework (WUMSDF)
  ☆123Updated 2 months ago
• Print3M / epic
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆119Updated last month
• MzHmO / SymProcAddress
  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
  ☆144Updated last year
• nbaertsch / nimHeapEnc
  Heap encryption in Nim
  ☆20Updated last year
• itaymigdal / Poshito
  Poshito is a Windows C2 over Telegram
  ☆18Updated last year
• ricardojoserf / SharpNado
  Repository to gather the .NET malware I will be developing
  ☆18Updated 10 months ago
• CICADA8-Research / TypeLibWalker
  TypeLib persistence technique
  ☆139Updated last year
• susMdT / ForsHops
  ForsHops
  ☆59Updated 10 months ago
• BlackOfWorld / NtCreateUserProcess
  A small NtCreateUserProcess PoC that spawns a Command prompt.
  ☆100Updated 3 years ago
• ghostbyt3 / BYOVDFinder
  Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
  ☆75Updated 6 months ago
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆107Updated 2 months ago
• Helixo32 / NimReflectiveLoader
  NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
  ☆30Updated 2 years ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆103Updated 2 years ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆177Updated last year
• C5Hackr / Eclipse
  A unique introduction to native runtime obfuscation.
  ☆74Updated 11 months ago
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆86Updated last year