Alternatives and similar repositories for InstantSuspend

Users that are interested in InstantSuspend are comparing it to the libraries listed below

• MrRoy09 / VMwhere
  LLVM based obfuscation engine
  ☆108Updated 5 months ago
• ParkSnoopy / rust_llvm-arkari_ollvm
  merge rust-lang's llvm and KomiMoe's Arkari (llvm) to produce obfuscated llvm for rustc
  ☆31Updated last week
• m3rcer / IRvana
  Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution
  ☆124Updated last month
• not-matthias / vmprotect-rs
  Rust bindings for VMProtect.
  ☆26Updated last year
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆53Updated 6 months ago
• thomasxm / Akira-obfuscator
  Another LLVM-obfuscator based on LLVM-17. A fork of Arkari
  ☆109Updated last year
• KpwnZ / sllvm-obfuscator
  Implementation of sllvm obfuscator
  ☆66Updated 3 years ago
• wesmar / KernelResearchKit
  Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…
  ☆40Updated this week
• AimiP02 / BronyaObfus
  整合Pluto-Obfuscator和goron部分混淆，移植到LLVM-16.0.x，使用NewPassManager
  ☆132Updated 2 years ago
• jsacco / PPL_Bypass
  ☆12Updated 3 years ago
• unkbyte / measured_boot_poc
  Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications
  ☆22Updated 8 months ago
• UmaRex01 / HookSentry
  Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.
  ☆36Updated 7 months ago
• Dor00tkit / BamExtensionTableHook
  Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…
  ☆91Updated 5 months ago
• killvxk / awesome-obfuscations
  ☆62Updated 4 months ago
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆75Updated last year
• leftp / FirewallMoniker
  A C# implementation that disables Windows Firewall bypassing UAC
  ☆16Updated last year
• baiyies / CrossInject
  32 bit process inject shellcode to 32 bit process and 64 bit process
  ☆35Updated 2 years ago
• farinap5 / bitmap4shell
  A (quite) simple steganography algorithm to hide shellcodes within bitmap image.
  ☆24Updated last year
• kkent030315 / detect-anyrun
  ANY.RUN sandbox detection collection
  ☆22Updated last year
• joaoviictorti / dbg-rs
  Safe Rust bindings for the COM interfaces of the Windows debugging engine
  ☆15Updated 3 weeks ago
• rand-tech / pcm
  MCP for reverse engineering
  ☆46Updated 8 months ago
• NioZow / Imperium
  A C++/Asm template for PIC/EXE/DLL malware
  ☆25Updated 4 months ago
• wwh1004 / AmsiBypassUacDetector
  Detect BypassUAC using AMSI
  ☆29Updated 9 months ago
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆78Updated 5 months ago
• outflanknl / seccomp-notify-injection
  Linux Process Injection via Seccomp Notifier
  ☆46Updated this week
• V-i-x-x / win11-kernel-execution-syscall-hijack
  Executing Kernel Routines via Syscall Table Hijack (Kernel Code Execution)
  ☆48Updated 5 months ago
• ommadawn46 / HEVD-Exploit-Win10-22H2-KVAS
  HEVD Exploit: ArbitraryWrite on Windows 10 22H2 - Bypassing KVA Shadow and SMEP via PML4 Entry Manipulation
  ☆35Updated last year
• rbmm / RtlClone
  ☆42Updated 9 months ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆89Updated 3 years ago
• 0xlane / com-process-inject
  Process Injection via Component Object Model (COM) IRundown::DoCallback().
  ☆63Updated 2 years ago