Alternatives and similar repositories for ejja

Users that are interested in ejja are comparing it to the libraries listed below

• JustinTimperio / SandMan
  Put sandbox detection to bed. Advanced sandbox detection and evasion for Golang.
  ☆8Updated 3 years ago
• timwhitez / Doge-Obf
  golang String Obfuscate
  ☆9Updated 3 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆48Updated 3 years ago
• CRYBOII / buggi
  Golang Simple Anti Debugger & Anti Http Debugger
  ☆20Updated 3 years ago
• clod81 / loader_process_hollow_copy_in_chunk
  About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
  ☆12Updated 2 years ago
• jm33-m0 / go-lpe
  A collection of weaponized LPE exploits written in Go
  ☆52Updated 4 months ago
• jonas-koeritz / amsi
  Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)
  ☆11Updated 3 years ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆76Updated 3 years ago
• HadarShahar / process-hiders
  Hides processes from the windows task manager using IAT hooking.
  ☆19Updated 4 years ago
• infobyte / Exploit-CVE-2021-21086
  ☆27Updated 3 years ago
• OtterHacker / CoffLoader
  ☆54Updated 2 years ago
• bharadwajyas / ppdump-public
  Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…
  ☆22Updated 5 years ago
• wilszdev / GetTrustedInstallerShell
  impersonate trustedinstaller by fiddling with tokens
  ☆17Updated 3 years ago
• C-Sto / encembed
  Encrypt embedded go files using age.
  ☆48Updated 3 years ago
• xpn / ObjectOverloadingPOC
  ☆62Updated 3 years ago
• 0x44F / WinKit
  💻 Windows 10 Kernel-mode rootkit
  ☆31Updated 2 years ago
• nblog / shellcode_execute
  ☆9Updated last year
• aaaddress1 / knownDlls_Poison
  ☆26Updated 3 years ago
• latortuga71 / GoPELoader
  ☆14Updated 2 years ago
• diljith369 / OffensiveVLang
  Offensive V Programming
  ☆18Updated 3 years ago
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆31Updated 2 years ago
• a7t0fwa7 / windows-ps-callbacks-experiments
  Files for http://deniable.org/windows/windows-callbacks
  ☆25Updated 4 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 4 years ago
• zlowram / gopart
  Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.
  ☆11Updated 5 years ago
• Narumiii / phantommap
  Phantom DLL Hollowing method implemented in modmap
  ☆17Updated 3 years ago
• CryptoBreach / UnhookPoC
  A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.
  ☆10Updated 3 years ago
• arsium / BypassGetModuleBaseAddressAndGetExportAddress
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆20Updated 2 years ago
• audibleblink / xordump
  ☆18Updated 3 years ago
• oxfemale / ComObjShellcodeLoader
  ComObject Shellcode Loader with fake return address
  ☆12Updated 3 years ago