Alternatives and similar repositories for StreamDivert

Users that are interested in StreamDivert are comparing it to the libraries listed below

• LloydLabs / delete-self-poc
  A way to delete a locked file, or current running executable, on disk.
  ☆524Updated 9 months ago
• Flangvik / SharpDllProxy
  Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading
  ☆795Updated 4 years ago
• tothi / dll-hijack-by-proxying
  Exploiting DLL Hijacking by DLL Proxying Super Easily
  ☆506Updated last year
• praetorian-inc / PortBender
  TCP Port Redirection Utility
  ☆718Updated 2 years ago
• med0x2e / SigFlip
  SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…
  ☆1,142Updated last year
• Hagrid29 / PELoader
  PE loader with various shellcode injection techniques
  ☆407Updated 2 years ago
• 0xlane / BypassUAC
  Use ICMLuaUtil to Bypass UAC!
  ☆548Updated 5 years ago
• zodiacon / WFPExplorer
  Windows Filtering Platform Explorer
  ☆259Updated 3 months ago
• br-sn / CheekyBlinder
  Enumerating and removing kernel callbacks using signed vulnerable drivers
  ☆560Updated 2 years ago
• med0x2e / ExecuteAssembly
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆580Updated 3 years ago
• Arno0x / DivertTCPconn
  A TCP packet diverter for Windows platform
  ☆322Updated 8 years ago
• nccgroup / SocksOverRDP
  Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
  ☆1,135Updated 2 years ago
• RedCursorSecurityConsulting / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆941Updated 2 years ago
• itm4n / PPLcontrol
  Controlling Windows PP(L)s
  ☆317Updated last year
• trustedsec / COFFLoader
  ☆533Updated last month
• mgeeky / UnhookMe
  UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …
  ☆348Updated 2 years ago
• sh4hin / GoPurple
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆486Updated 4 years ago
• hasherezade / transacted_hollowing
  Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
  ☆546Updated last year
• GetRektBoy724 / SharpUnhooker
  C# Based Universal API Unhooker
  ☆401Updated 3 years ago
• kyleavery / inject-assembly
  Inject .NET assemblies into an existing process
  ☆494Updated 3 years ago
• forrest-orr / phantom-dll-hollower-poc
  Phantom DLL hollowing PoC
  ☆360Updated 2 years ago
• antonioCoco / MalSeclogon
  A little tool to play with the Seclogon service
  ☆312Updated 2 years ago
• AzAgarampur / byeintegrity-uac
  Bypass UAC by hijacking a DLL located in the Native Image Cache
  ☆213Updated 3 years ago
• nettitude / RunPE
  C# Reflective loader for unmanaged binaries.
  ☆431Updated 2 years ago
• itm4n / PPLdump
  Dump the memory of a PPL with a userland exploit
  ☆870Updated 2 years ago
• FSecureLABS / Ninjasploit
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆245Updated 4 years ago
• cyberark / RPCMon
  RPC Monitor tool based on Event Tracing for Windows
  ☆349Updated 8 months ago
• hasherezade / process_ghosting
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆658Updated last year
• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆337Updated 2 years ago
• Dec0ne / HWSyscalls
  HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
  ☆671Updated last year