Alternatives and similar repositories for ASM_World:

Users that are interested in ASM_World are comparing it to the libraries listed below

• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆17Updated last year
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆26Updated last year
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆25Updated 11 months ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆18Updated this week
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 3 years ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 5 months ago
• VirtualAlllocEx / Create_Thread_Inline_Assembly_x86
  This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly
  ☆18Updated 2 years ago
• Helixo32 / DetectHooks
  Detect userland hooks placed by AV/EDR
  ☆27Updated last year
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆19Updated 3 months ago
• susMdT / fictional-invention
  idk man this was the default github name
  ☆35Updated 2 years ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• rbmm / Hollowed-Process
  ☆26Updated 2 months ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated last year
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 3 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated last year
• Xacone / Eneio64-Driver-Exploit
  Exploit for eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W
  ☆14Updated last month
• FuzzySecurity / SAFACon-Vienna
  ☆23Updated 11 months ago
• Allevon412 / BenignHunter
  ☆17Updated 9 months ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆46Updated 2 years ago
• Offensive-Panda / WPM-MAJIC-ENTRY-POINT-INJECTION
  This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…
  ☆16Updated 5 months ago
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 7 months ago
• som3canadian / Mythic_NimSyscallPacker_Wrapper
  Mythic C2 wrapper for NimSyscallPacker
  ☆24Updated last month
• dmcxblue / NtCreateUserProcessBOF
  An Aggressor Script that utilizes NtCreateUserProcess to run binaries
  ☆26Updated 2 months ago
• whokilleddb / ProcReveal
  A kernel driver to get a Handle to virtually *every* process
  ☆13Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year
• rvrsh3ll / DInjector
  Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
  ☆21Updated 2 years ago
• rkbennett / icmpsh
  Simple reverse ICMP shell
  ☆13Updated 11 months ago