Alternatives and similar repositories for patch-iat:

Users that are interested in patch-iat are comparing it to the libraries listed below

• Scavanger / MemoryModule.net
  Loading a native DLL in the memory.
  ☆69Updated 6 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 8 years ago
• malcomvetter / WMIProcessWatcher
  An example pattern in C# for using WMI to monitor process creation and termination events.
  ☆52Updated 6 years ago
• bfosterjr / CFFExtensions
  ☆22Updated 4 years ago
• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆56Updated 6 years ago
• zodiacon / ManagedWindows
  Managed wrappers around the Windows API and some Native API
  ☆34Updated 6 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 6 years ago
• holly-hacker / HoLLy.MemoryLib
  A specialized C# memory-accessing library
  ☆43Updated 6 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆56Updated 5 years ago
• owerosu / packerPE32
  Simple PE packer with RtlCompressBuffer
  ☆21Updated 9 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆51Updated 6 years ago
• wekillpeople / bypassav-dynimp
  Bypass antivirus with dynamic import. Hide the api(s) used.
  ☆26Updated 8 years ago
• ajkhoury / Dude-Loader
  Class implementation of PowerLoader injection technique
  ☆29Updated 8 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆34Updated 8 years ago
• tigros / HookTools
  Plugin for Process Hacker 2 ( https://github.com/processhacker2 ), displays system hooks and able to unhook too.
  ☆49Updated 7 years ago
• Rootkitsmm-zz / WinIo-Vidix
  Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )
  ☆28Updated 9 years ago
• tmthrgd / DLL-Injector
  Inject and detour DLLs and program functions both managed and unmanaged in other programs, written (almost) purely in C#. [Not maintained…
  ☆38Updated 11 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 7 years ago
• Panthere / AntiNET
  Anti-.NET Malware/Packers - Detect most .NET Packers (and some native) used for malware.
  ☆24Updated 7 years ago
• ScorchSecurity / Toast
  User-mode hook bypassing method
  ☆33Updated 8 years ago
• enkomio / Anathema
  .NET instrumentation framework
  ☆72Updated 7 years ago
• swwwolf / cbtest
  Windows kernel-mode callbacks tutorial driver
  ☆47Updated 8 years ago
• NtRaiseHardError / MIST
  Minimal Intervention and Software Transformation - PoC Packer designed for AV detection bypass
  ☆18Updated 7 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 6 years ago
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 8 years ago
• secabstraction / PowerWalker
  ☆21Updated 8 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆25Updated 11 years ago
• wildcardc / cfxc-deobf
  A ConfuserEx-custom deobfuscation toolchain
  ☆51Updated 7 years ago