Alternatives and similar repositories for dolos

Users that are interested in dolos are comparing it to the libraries listed below

• frank2 / packer-tutorial
  A tutorial on how to write a packer for Windows!
  ☆284Updated last year
• MahmoudZohdy / Process-Injection-Techniques
  Various Process Injection Techniques
  ☆152Updated 3 years ago
• bytecode77 / living-off-the-land
  Fileless attack with persistence
  ☆358Updated last month
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆105Updated 2 years ago
• PELock / Simple-Polymorphic-Engine-SPE32
  Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used …
  ☆148Updated 2 years ago
• TheMalwareGuardian / Abismo
  Early Work on Abyss Windows UEFI Bootkit
  ☆43Updated last month
• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆543Updated last year
• adamhlt / Process-Hollowing
  Process Hollowing in C++ (x86 / x64) - Process PE image replacement
  ☆161Updated 2 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆154Updated 2 years ago
• memN0ps / arsenal-rs
  Rusty Arsenal - A collection of experimental Process Injection and Post-Exploitation Techniques in Rust
  ☆273Updated last year
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆158Updated 2 years ago
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆30Updated 5 years ago
• WithSecureLabs / CallStackSpoofer
  A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
  ☆510Updated 4 months ago
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆187Updated last week
• nickcano / RelocBonus
  An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.
  ☆306Updated 6 years ago
• janoglezcampos / llvm-yx-callobfuscator
  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
  ☆297Updated last year
• nelfo / Milfuscator
  x86 PE Mutator
  ☆225Updated 2 years ago
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆275Updated 3 months ago
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆253Updated last year
• eversinc33 / unKover
  PoC Anti-Rootkit/Anti-Cheat Driver.
  ☆211Updated 3 months ago
• jussihi / SMM-Rootkit
  SMM rootkit similar to LoJax or MosaicRegressor
  ☆129Updated last year
• micREsoft / SysCaller
  Windows syscall SDK with dynamic offset resolution, validation, obfuscation, and multi language bindings. Bypass API hooks across differe…
  ☆37Updated last week
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆86Updated last year
• rad9800 / WTSRM
  WTSRM
  ☆214Updated 3 years ago
• gharty03 / Conti-Ransomware
  Full source of the Conti Ransomware Including the missing Locker files from the original leak. I have fixed some of the errors intentiona…
  ☆155Updated 2 years ago
• KooroshRZ / Evader
  Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)
  ☆104Updated 5 years ago
• EgeBalci / deoptimizer
  Evasion by machine code de-optimization.
  ☆395Updated last year
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆408Updated last week
• XaFF-XaFF / Black-Angel-Rootkit
  Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
  ☆642Updated last year
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆181Updated 3 months ago