Alternatives and similar repositories for seashell:

Users that are interested in seashell are comparing it to the libraries listed below

• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆35Updated last year
• AdvDebug / BehavEye
  Advanced dynamic malware analysis tool.
  ☆83Updated last year
• Idov31 / rustomware
  Simple ransomware written in Rust. Part of the building a rustomware blog post.
  ☆32Updated last year
• 3itch / icekit
  I/O Cache-As-Ram + AMD x86_64 cache line locking | Mirror of https://codeberg.org/3itch/icekit
  ☆14Updated 2 months ago
• gelven4sec / NotPetyaAgain
  PoC of a UEFI Petya ransomware
  ☆42Updated 2 years ago
• li4321 / selfmovingdll
  ☆23Updated 5 months ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆57Updated 2 years ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆34Updated last year
• lil-skelly / basilisk
  ☆10Updated last month
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆104Updated 2 years ago
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆27Updated 5 years ago
• pygrum / siphon
  A feed of malware samples curated from threat intelligence sources.
  ☆26Updated last year
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆35Updated 2 years ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆20Updated 2 weeks ago
• TheMalwareGuardian / Awesome-Bootkits-Rootkits-Development
  A curated compilation of extensive resources dedicated to bootkit and rootkit development.
  ☆47Updated 2 weeks ago
• 3itch / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆66Updated last month
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• 0xjbb / vehspoof
  Callstack spoofing using a VEH because VEH all the things.
  ☆21Updated last month
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆57Updated 9 months ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆100Updated last year
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆37Updated 2 years ago
• xalicex / Get-DLL-and-Function-Addresses
  GetModuleHandle (via PEB) and GetProcAddress (via EAT) like
  ☆32Updated 3 years ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 6 months ago
• Archie-osu / PowerHook
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆62Updated 3 weeks ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆102Updated last year
• lewiswigmore / Virus.xcheck
  Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…
  ☆53Updated last month
• hasherezade / sig_finder
  Signature finder (from PE-bear)
  ☆36Updated 2 weeks ago
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆27Updated 9 months ago
• tehstoni / RustyKeys
  UAC Bypass using CMSTP in Rust
  ☆26Updated 5 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆109Updated 8 months ago