Alternatives and similar repositories for BlackLotus:

Users that are interested in BlackLotus are comparing it to the libraries listed below

• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆526Updated last year
• Idov31 / Nidhogg
  Nidhogg is an all-in-one simple to use windows kernel rootkit.
  ☆1,915Updated 2 weeks ago
• hasherezade / pe-bear
  Portable Executable reversing tool with a friendly GUI
  ☆2,961Updated 3 weeks ago
• vxunderground / VX-API
  Collection of various malicious functionality to aid in malware development
  ☆1,617Updated last year
• weak1337 / Alcatraz
  x64 binary obfuscator
  ☆1,795Updated last year
• matthieu-hackwitharts / Win32_Offensive_Cheatsheet
  Win32 and Kernel abusing techniques for pentesters
  ☆947Updated last year
• jmpoep / vmprotect-3.5.1
  ☆1,955Updated 10 months ago
• Cracked5pider / Stardust
  A modern 32/64-bit position independent implant template
  ☆1,175Updated last week
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,140Updated this week
• YuriiCrimson / ExploitGSM
  Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5
  ☆844Updated 11 months ago
• ZeroMemoryEx / Blackout
  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)
  ☆930Updated last year
• XaFF-XaFF / Cronos-Rootkit
  Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
  ☆885Updated 3 years ago
• XaFF-XaFF / Black-Angel-Rootkit
  Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
  ☆638Updated last year
• PaulNorman01 / Forensia
  Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
  ☆755Updated last year
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,260Updated 2 weeks ago
• fr0gger / Awesome_Malware_Techniques
  This is a repository of resource about Malware techniques
  ☆786Updated last year
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,076Updated last year
• hasherezade / hollows_hunter
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,131Updated last month
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,399Updated last month
• horsicq / XPEViewer
  PE file viewer/editor for Windows, Linux and MacOS.
  ☆1,054Updated this week
• bytecode77 / r77-rootkit
  Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
  ☆1,838Updated last week
• hackerhouse-opensource / iscsicpl_bypassUAC
  UAC bypass for x64 Windows 7 - 11
  ☆797Updated 2 years ago
• lab52io / StopDefender
  Stop Windows Defender programmatically
  ☆965Updated 2 years ago
• Faran-17 / Windows-Internals
  Important notes and topics on my journey towards mastering Windows Internals
  ☆374Updated 11 months ago
• packing-box / awesome-executable-packing
  A curated list of awesome resources related to executable packing
  ☆1,296Updated 3 months ago
• ZeroMemoryEx / Chaos-Rootkit
  Now You See Me, Now You Don't
  ☆919Updated 3 months ago
• b1tg / CVE-2023-38831-winrar-exploit
  CVE-2023-38831 winrar exploit generator
  ☆786Updated last year
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,852Updated 2 years ago
• mgeeky / ProtectMyTooling
  Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…
  ☆940Updated 3 months ago
• JuliaPoo / Artfuscator
  A C compiler targeting an artistically pleasing nightmare for reverse engineers
  ☆1,052Updated 2 years ago