Alternatives and similar repositories for dolos

Users that are interested in dolos are comparing it to the libraries listed below

• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆106Updated 2 years ago
• MahmoudZohdy / Process-Injection-Techniques
  Various Process Injection Techniques
  ☆158Updated 3 years ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆93Updated last year
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆32Updated 5 years ago
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆258Updated last year
• TheMalwareGuardian / Abismo
  [ARCHIVED] Early work on Abyss (Windows UEFI Bootkit).
  ☆43Updated last month
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆155Updated 2 years ago
• PELock / Simple-Polymorphic-Engine-SPE32
  Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used …
  ☆150Updated 2 years ago
• frank2 / packer-tutorial
  A tutorial on how to write a packer for Windows!
  ☆291Updated last year
• micREsoft / SysCaller
  SysCaller: SDK for WindowsAPI via syscalls. Dynamic Resolution, Obfuscation, Multi-Language Bindings, & more!
  ☆49Updated last week
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆281Updated 5 months ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆159Updated 3 years ago
• janoglezcampos / llvm-yx-callobfuscator
  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
  ☆315Updated last year
• eversinc33 / unKover
  PoC Anti-Rootkit/Anti-Cheat Driver.
  ☆221Updated 5 months ago
• TheMalwareGuardian / Awesome-Bootkits-Rootkits-Development
  A curated compilation of extensive resources dedicated to bootkit and rootkit development.
  ☆116Updated 2 months ago
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆272Updated last year
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆259Updated 3 weeks ago
• rad9800 / hwbp4mw
  ☆265Updated 2 years ago
• WithSecureLabs / CallStackSpoofer
  A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
  ☆524Updated 6 months ago
• Nordgaren / stealth-win
  ☆47Updated 2 years ago
• zer0condition / ZeroHVCI
  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…
  ☆234Updated 11 months ago
• nelfo / Milfuscator
  x86 PE Mutator
  ☆225Updated 2 years ago
• DarxiSR / CRYLINE-v5.0
  Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes on…
  ☆58Updated 4 months ago
• adamhlt / Process-Hollowing
  Process Hollowing in C++ (x86 / x64) - Process PE image replacement
  ☆171Updated 2 years ago
• rad9800 / WTSRM
  WTSRM
  ☆215Updated 3 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆255Updated 3 years ago
• amitschendel / venom-rootkit
  A simple Windows kernel rootkit.
  ☆94Updated 5 months ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆183Updated 5 months ago
• GetRektBoy724 / DCMB
  Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!
  ☆235Updated last year
• gharty03 / Conti-Ransomware
  Full source of the Conti Ransomware Including the missing Locker files from the original leak. I have fixed some of the errors intentiona…
  ☆157Updated 2 years ago