Alternatives and similar repositories for ProcessStealth

Users that are interested in ProcessStealth are comparing it to the libraries listed below

• HadarShahar / process-hiders
  Hides processes from the windows task manager using IAT hooking.
  ☆22Updated 4 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 4 years ago
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆27Updated 4 years ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆44Updated 2 years ago
• joshfinley / SyscallDumper
  Dump system call codes, names, and offsets from Ntdll.dll
  ☆83Updated 2 years ago
• ZeroMemoryEx / Hooks_Hunter
  Simple API Hooks detector
  ☆77Updated 3 years ago
• Flawww / ObfuscatedJumpGenerator
  Dynamically generated obfuscated jumps and/or function calls
  ☆38Updated 2 years ago
• SwenenzY / section-obfuscation
  PE Header (.rdata,.data,.text) obsfucation
  ☆36Updated 3 years ago
• MahmoudZohdy / DLL-Obfuscation-V2
  Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.
  ☆23Updated 4 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆26Updated 6 years ago
• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆20Updated 3 years ago
• Hemogl0bin / drvscanner
  Scan for potentially vulnerable drivers
  ☆94Updated 3 years ago
• Lima-X / XOrCryptEx
  XOrCryptEx lightweight C Utility/Algorithm
  ☆11Updated 3 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆50Updated 8 years ago
• emlinhax / DriverTimestampFaker
  Fake Timestamps of Driver Certificates while keeping validity.
  ☆18Updated 4 years ago
• nickcano / ReloadLibrary
  A quick-and-dirty anti-hook library proof of concept.
  ☆105Updated 7 years ago
• ZeroMemoryEx / TrampHook
  Simple x86 Trampoline Hook
  ☆45Updated 3 years ago
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated 3 months ago
• exploitblizzard / Windows-Privilege-Escalation-CVE-2021-1732
  Read my blog for more info -
  ☆31Updated 4 years ago
• XShar / simple_mutate_pe_x86
  Мутация PE x86
  ☆16Updated 6 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• ghzcrlvct / Adrena
  Software Protector
  ☆19Updated 5 years ago
• alfarom256 / drivers_and_shit
  ☆59Updated 3 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆74Updated 4 years ago
• PaulNorman01 / Dynamizer
  Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.
  ☆21Updated 3 years ago
• TheComet / polymorhpic-crypter
  what the fuck is this shit
  ☆25Updated 10 years ago
• reversinghub / hide-and-seek
  PoC for hiding processes from Windows Task Manager by manipulating the graphic interface
  ☆47Updated 5 years ago
• dr4k0nia / simple-string-encryption
  Simple website to automatically generate string encryption/decryption routines for C#
  ☆10Updated 3 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆30Updated 4 years ago
• 0x44F / WinKit
  💻 Windows 10 Kernel-mode rootkit
  ☆32Updated 3 years ago