Alternatives and similar repositories for Get-InjectedThreadEx

Users that are interested in Get-InjectedThreadEx are comparing it to the libraries listed below

• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆79Updated 2 years ago
• joe-desimone / rep-research
  ☆78Updated last year
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated last year
• codewhitesec / SysmonEnte
  ☆76Updated 3 years ago
• dsnezhkov / shutter
  ☆123Updated 4 years ago
• whokilleddb / ETWListicle
  List the ETW provider(s) in the registration table of a process.
  ☆80Updated 2 years ago
• ghostbyt3 / BYOVDFinder
  Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
  ☆73Updated 5 months ago
• Fitretech-Security / dylight
  macOS dylib stager
  ☆36Updated 11 months ago
• DGRonpa / Process_Injection
  ☆28Updated 3 years ago
• Print3M / epic
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆113Updated last week
• rkbennett / pybof
  Python module for running BOFs
  ☆79Updated last month
• mansk1es / GhostFart
  ☆137Updated 2 years ago
• RedTeamOperations / VEH-PoC
  ☆119Updated 3 years ago
• tothi / stager_libpeconv
  A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading
  ☆84Updated 3 years ago
• Slowerzs / CryptDecryptMemory
  ☆31Updated last year
• 0prrr / Malwear-Sweet
  Malware?
  ☆76Updated 2 months ago
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆36Updated 3 years ago
• xforcered / Being-A-Good-CLR-Host
  ☆135Updated 11 months ago
• susMdT / ForsHops
  ForsHops
  ☆59Updated 9 months ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆43Updated 2 years ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆167Updated last year
• dobin / ace-firefist
  Attack chain emulator. Write recipes for initial access easily
  ☆22Updated 10 months ago
• xforcered / VectoredExceptionHandling
  ☆35Updated last year
• ScriptIdiot / SysmonQuiet
  RDLL for Cobalt Strike beacon to silence sysmon process
  ☆91Updated 3 years ago
• decoder-it / RelabelAbuse
  ☆64Updated last year
• rasta-mouse / LibTP
  Crystal Palace library for proxying Nt API calls via the Threadpool
  ☆97Updated 2 months ago
• MaorSabag / Paruns-Fart
  Just another ntdll unhooking using Parun's Fart technique
  ☆76Updated 2 years ago
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆42Updated 8 months ago
• MEhrn00 / boflink
  Linker for Beacon Object Files
  ☆144Updated last week
• LloydLabs / process-enumeration-stealth
  ☆83Updated last year