Alternatives and similar repositories for HideAndProtect:

Users that are interested in HideAndProtect are comparing it to the libraries listed below

• malcomvetter / WMIProcessWatcher
  An example pattern in C# for using WMI to monitor process creation and termination events.
  ☆51Updated 6 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 6 years ago
• michaelbadichi / RunAsSystem
  ☆31Updated 9 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆17Updated 3 months ago
• ohjeongwook / LoadDLL
  Windows DLL Loading Utility
  ☆11Updated 4 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆36Updated 6 years ago
• HarmJ0y / Arya
  Arya is a simple obfuscator for .NET binaries.
  ☆39Updated 7 years ago
• malcomvetter / SneakyService
  A simple, minimal C# windows service implementation that can be used to demonstrate privilege escalation from misconfigured windows servi…
  ☆15Updated 9 years ago
• ScorchSecurity / Toast
  User-mode hook bypassing method
  ☆33Updated 8 years ago
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• malcomvetter / AntiDebug
  PoC: Prevent a debugger from attaching to managed .NET processes via a watcher process code pattern.
  ☆32Updated 6 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆33Updated 8 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• secana / CertDump
  Dump certificates from PE files in different formats
  ☆38Updated last year
• hasherezade / tag_converter
  ☆22Updated 3 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated 2 years ago
• zodiacon / Blog
  Blog posts
  ☆30Updated 4 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆30Updated 4 years ago
• guitmz / msil-cecil-injection
  Injection of MSIL using Cecil
  ☆12Updated 9 years ago
• guibacellar / BisquillaRansomware
  The evolution of NxRansomware
  ☆10Updated 5 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆27Updated 6 years ago
• jschicht / PowerMft
  Powerful commandline $MFT record editor.
  ☆23Updated 9 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆34Updated 7 years ago
• carnal0wnage / ApplicationWhitelistBypassTechniques
  A Catalog of Application Whitelisting Bypass Techniques
  ☆31Updated 10 years ago
• hotnops / RemoteDebugView
  A DLL that serves OutputDebugString content over a TCP connection
  ☆35Updated 3 years ago
• adamcecc / Windows-Kernel-Flaws
  If you want to exploit some kernel overflows, I've designed (long time ago) several levels ; have fun!
  ☆8Updated 12 years ago
• nccgroup / memgrep
  Memory searching utilities
  ☆42Updated 11 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆16Updated 6 years ago