Alternatives and similar repositories for ejja

Users that are interested in ejja are comparing it to the libraries listed below

• timwhitez / Doge-Obf
  golang String Obfuscate
  ☆9Updated 3 years ago
• JustinTimperio / SandMan
  Put sandbox detection to bed. Advanced sandbox detection and evasion for Golang.
  ☆8Updated 3 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• jm33-m0 / go-lpe
  A collection of weaponized LPE exploits written in Go
  ☆52Updated 3 months ago
• clod81 / loader_process_hollow_copy_in_chunk
  About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
  ☆12Updated 2 years ago
• zlowram / gopart
  Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.
  ☆11Updated 5 years ago
• jonas-koeritz / amsi
  Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)
  ☆11Updated 3 years ago
• timwhitez / Freeze-Common
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Updated 2 years ago
• BradHacker / titan
  Golang C2 and Beacon/Agent built from the ground up for scalability and expandability
  ☆14Updated 4 years ago
• lymbin / frida-scripts
  Frida Memory Dumper and Scanner for native Linux apps and Windows apps
  ☆20Updated 2 years ago
• timwhitez / Doge-HeapAlloc
  ☆14Updated 3 years ago
• nblog / shellcode_execute
  ☆9Updated last year
• C-Sto / encembed
  Encrypt embedded go files using age.
  ☆48Updated 3 years ago
• sergey-cheperis / mimikatz-staticlib
  Mimikatz built as a static library.
  ☆12Updated 3 years ago
• bharadwajyas / ppdump-public
  Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…
  ☆22Updated 5 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 2 years ago
• a7t0fwa7 / windows-ps-callbacks-experiments
  Files for http://deniable.org/windows/windows-callbacks
  ☆25Updated 4 years ago
• hluwa / linkdeep
  Discover deeplink from public internet.
  ☆10Updated 2 years ago
• OXDBXKXO / ez-pwnkit
  Go implementation of the PwnKit Linux Local Privilege Escalation exploit (CVE-2021-4034)
  ☆8Updated 3 years ago
• nicholasvg / RunPE-Process-Hollowing-GO
  Thanks to @d35ha
  ☆13Updated 3 years ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆48Updated 3 years ago
• CryptoBreach / UnhookPoC
  A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.
  ☆10Updated 3 years ago
• archival-0x / menagerie
  Cross-platform malware development library for anti-analysis techniques
  ☆24Updated 3 years ago
• theRealestAEP / GoLang
  Pure Go lang cryptor and shellcode injector
  ☆20Updated 4 years ago
• infobyte / Exploit-CVE-2021-21086
  ☆27Updated 3 years ago
• Narumiii / phantommap
  Phantom DLL Hollowing method implemented in modmap
  ☆17Updated 3 years ago
• mjwhitta / win
  Windows API/constants, identity, and WinHTTP/WinINet for Go.
  ☆18Updated last week
• latortuga71 / GoPELoader
  ☆14Updated 2 years ago
• timwhitez / Doge-Persist
  Windows Persistence Collection
  ☆12Updated 4 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago