Alternatives and similar repositories for InstantSuspend

Users that are interested in InstantSuspend are comparing it to the libraries listed below

• MrRoy09 / VMwhere
  LLVM based obfuscation engine
  ☆109Updated 7 months ago
• killvxk / awesome-obfuscations
  ☆73Updated 6 months ago
• not-matthias / vmprotect-rs
  Rust bindings for VMProtect.
  ☆27Updated last year
• kkent030315 / detect-anyrun
  ANY.RUN sandbox detection collection
  ☆22Updated last year
• Dor00tkit / BamExtensionTableHook
  Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…
  ☆92Updated 6 months ago
• jsacco / PPL_Bypass
  ☆12Updated 3 years ago
• m3rcer / IRvana
  Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution
  ☆130Updated last month
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆89Updated 3 years ago
• zer0condition / NTMemory
  Usermode NT Explorer - Query kernel addresses, translate virtual to physical addresses, inspect the PFN database, and more.
  ☆68Updated last week
• idkhidden / winapipatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆43Updated last year
• ParkSnoopy / rust_llvm-arkari_ollvm
  merge rust-lang's llvm and KomiMoe's Arkari (llvm) to produce obfuscated llvm for rustc
  ☆37Updated last month
• mdsecactivebreach / functionpeekaboo
  ☆60Updated 3 months ago
• preludeorg / ThreatIntelligenceConsumer
  Demonstrates consuming from a SecurityTrace ETW session by consuming from the Threat-Intelligence ETW provider without a driver or PPL pr…
  ☆60Updated 2 weeks ago
• baiyies / CrossInject
  32 bit process inject shellcode to 32 bit process and 64 bit process
  ☆35Updated 2 years ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆63Updated last year
• jsacco / ioctlplusplus
  IOCTL++ can be used to make DeviceIoControl requests with arbitrary inputs.
  ☆34Updated 3 months ago
• EvilBytecode / Eset-Unload
  Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …
  ☆12Updated 9 months ago
• melotic / rekk
  rekk is set of tools written in Rust to obfuscate ELF & PE executables with nanomites.
  ☆31Updated last year
• Kharos102 / ReadWriteDriverSample
  ☆25Updated last year
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆53Updated 8 months ago
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/User Mode Exploitation writeups and exploits
  ☆24Updated 3 months ago
• unkbyte / measured_boot_poc
  Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications
  ☆22Updated 10 months ago
• MahmoudZohdy / IAT-Obfuscation
  IAT-Obfuscation to make static analysis of executable harder.
  ☆44Updated 4 years ago
• outflanknl / seccomp-notify-injection
  Linux Process Injection via Seccomp Notifier
  ☆81Updated last month
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated 3 months ago
• djolertrk / kovid-obfuscation-passes
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆138Updated 3 months ago
• farinap5 / bitmap4shell
  A (quite) simple steganography algorithm to hide shellcodes within bitmap image.
  ☆25Updated last year
• Cracked5pider / Rhaast
  doesnt work and wont work on it anymore
  ☆10Updated last year
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆74Updated last year
• kkent030315 / razy_importer
  Rust implementation of lazy_importer
  ☆59Updated 2 years ago