Alternatives and similar repositories for DLLForward

Users that are interested in DLLForward are comparing it to the libraries listed below

• A-Normal-User / Pretend_HideVirtualMemory
  利用物理内存映射，实现虚拟内存的伪隐藏
  ☆86Updated 3 years ago
• MahmoudZohdy / IAT-Obfuscation
  IAT-Obfuscation to make static analysis of executable harder.
  ☆44Updated 4 years ago
• android1337 / crycall
  Compile-Time Calls Obfuscator for C++14+
  ☆51Updated 2 years ago
• sapdragon / syscalls-cpp
  A modern C++20 header-only library for advanced direct system call invocation.
  ☆165Updated 3 weeks ago
• A-Normal-User / NtSocket_NtClient_NtServer
  Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock（利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能）
  ☆127Updated 3 years ago
• D0pam1ne705 / Direct-NtCreateUserProcess
  Call NtCreateUserProcess directly as normal.
  ☆76Updated 3 years ago
• MiroKaku / HRSword-Portable
  https://www.huorong.cn/
  ☆15Updated last year
• backengineering / CheckEvilSln
  A simple python script to check evil Visual Studio projects
  ☆21Updated 2 years ago
• AimiP02 / BronyaObfus
  整合Pluto-Obfuscator和goron部分混淆，移植到LLVM-16.0.x，使用NewPassManager
  ☆134Updated 2 years ago
• MahmoudZohdy / APICallProxy
  Windows API Call Obfuscation
  ☆112Updated 3 years ago
• wangda38 / vmShell_Protect
  ☆21Updated 3 years ago
• kouzhudong / AntiHook
  Enum and Remove Hook in Windows
  ☆48Updated last month
• hid3rx / GhostWriting
  ☆34Updated 2 years ago
• i1tao / winsec-ark
  Anti-Rootkit Tool for Windows
  ☆12Updated 10 months ago
• estimated1337 / lenovo_exec
  CVE-2022-3699 with arbitrary kernel code execution capability
  ☆71Updated 3 years ago
• 0mWindyBug / KernelInjector
  PoC kernel to usermode injection
  ☆103Updated last year
• je5442804 / NtCreateUserProcess-Post
  NtCreateUserProcess with CsrClientCallServer for mainstream Windows x64 version
  ☆42Updated last year
• xiaoxiaozhu5 / shadow_tls
  shadow tls
  ☆17Updated 3 years ago
• iArtorias / x64dbg-VS-Darker
  A pretty dark theme support for x64dbg, inspired by Visual Studio.
  ☆30Updated 2 years ago
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆77Updated last year
• m417z / LdrDllNotificationHook
  Hook all callbacks which are registered with LdrRegisterDllNotification
  ☆96Updated 10 months ago
• HARM4Y / Karlann
  It's a kernel-based keylogger for Windows x86/x64.
  ☆143Updated 3 years ago
• cs1ime / DICHook
  Hook NtDeviceIoControlFile with PatchGuard
  ☆107Updated 3 years ago
• ssyuqixe / obfCoder
  A simple program to obfuscate code written in cpp.
  ☆51Updated last year
• nbs32k / inline-syscall
  Inline syscalls made for MSVC supporting x64 and WOW64
  ☆192Updated 2 years ago
• threatexpert / atrk-win
  针对windows rootkit的一些检测，分别从进程、端口、文件这三个方面进行检测。
  ☆21Updated last year
• adamhlt / Manual-DLL-Loader
  Custom LoadLibrary / GetProcAddress (x86 / x64) - Load DLL and retrieve functions manually
  ☆94Updated 2 years ago
• Fatmike-GH / PELoader
  A Windows PE loader / manual mapper for executables (x86 and x64) with full TLS (Thread Local Storage) support.
  ☆84Updated 3 months ago
• TheAenema / hm-pe-packer
  A x64 PE Packer/Protector Developed in C++ and VisualStudio
  ☆55Updated 2 years ago
• Rhydon1337 / windows-kernel-file-delete
  Force a file delete using a windows kernel driver
  ☆72Updated 3 years ago