Alternatives and similar repositories for threadfire

Users that are interested in threadfire are comparing it to the libraries listed below

• Include-sys / hCrypt
  Open Source C++ Crypter. AES-256 Bit Encryption, Virtual Machine Detection and Almost FUD
  ☆132Updated 4 years ago
• NtRaiseHardError / Antimalware-Research
  Research on Anti-malware and other related security solutions
  ☆259Updated 4 years ago
• 0x25bit / hackingLibrary
  ‪APT,‬ ‪Cyber warfare,‬ ‪Penetration testing,‬ ‪Zero-day,Exploiting,‬Fuzzing,Privilege-Escalation,browser-security‪,Spyware,Malwres evade…
  ☆35Updated 6 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆173Updated 6 years ago
• MandConsultingGroup / ring3-kit
  Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)
  ☆76Updated 2 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆134Updated 2 months ago
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆221Updated 2 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆64Updated 7 years ago
• paranoidninja / Botnet-blogpost
  This repo basically contains the code that was mentioned in the blogposts that was written by me at:
  ☆95Updated 2 years ago
• Mr-Un1k0d3r / Shellcoding
  Shellcoding utilities
  ☆222Updated 4 years ago
• hlldz / APC-PPID
  Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.
  ☆157Updated 5 years ago
• yatt-ze / AbSent-Loader
  Example Loader to be used as a learning resource for people interested in how commercially available malware is made on a very basic leve…
  ☆71Updated 6 years ago
• CylanceVulnResearch / ReflectiveDLLRefresher
  Universal Unhooking
  ☆321Updated 6 years ago
• FSecureLABS / Ninjasploit
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆246Updated 4 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆96Updated 3 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆123Updated 5 years ago
• sh3llc0d3r1337 / windows_reverse_shell_1
  Windows Reverse Shell shellcode
  ☆61Updated 2 years ago
• threatexpress / metatwin
  The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…
  ☆345Updated 5 months ago
• eLoopWoo / zwhawk
  A kernel rootkit with remote command and control interface for windows
  ☆108Updated 7 years ago
• xorrior / Random-CSharpTools
  Collection of CSharp Assemblies focused on Post-Exploitation Capabilities
  ☆228Updated 5 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 4 years ago
• sailay1996 / magnifier0day
  Windows 10 Privilege Escalation (magnifier.exe) via Dll Search Order Hijacking
  ☆140Updated 4 years ago
• albertzsigovits / malware-writeups
  Personal research and publication on malware families
  ☆139Updated 4 months ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆149Updated 2 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆215Updated 4 years ago
• MalwareTech / ZombifyProcess
  Inject code into a legitimate process
  ☆143Updated 10 years ago
• KooroshRZ / Evader
  Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)
  ☆104Updated 4 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆88Updated 5 years ago
• Accenture / CLRvoyance
  Managed assembly shellcode generation
  ☆271Updated 4 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year