Alternatives and similar repositories for dolos

Users that are interested in dolos are comparing it to the libraries listed below

• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆104Updated 2 years ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆79Updated last year
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆154Updated 2 years ago
• MahmoudZohdy / Process-Injection-Techniques
  Various Process Injection Techniques
  ☆148Updated 2 years ago
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆262Updated last month
• GetRektBoy724 / DCMB
  Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!
  ☆232Updated 10 months ago
• li4321 / GhostInjector
  ☆45Updated 3 months ago
• SamuelTulach / HookGuard
  Hooking Windows' exception dispatcher to protect process's PML4
  ☆169Updated 3 months ago
• XaFF-XaFF / Kernel-Process-Hollowing
  Windows x64 kernel mode rootkit process hollowing POC.
  ☆189Updated last year
• carlos-al / user-kernel-syscall-hook
  ☆89Updated 11 months ago
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆249Updated last year
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆100Updated last year
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆236Updated 7 months ago
• memN0ps / arsenal-rs
  Rusty Arsenal - A collection of experimental Process Injection and Post-Exploitation Techniques in Rust
  ☆261Updated last year
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆71Updated 3 years ago
• rad9800 / WTSRM
  WTSRM
  ☆210Updated 2 years ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆111Updated 2 years ago
• amitschendel / venom-rootkit
  A simple Windows kernel rootkit.
  ☆93Updated this week
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆143Updated 2 years ago
• Nordgaren / stealth-win
  ☆46Updated last year
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆123Updated last year
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆34Updated last year
• eversinc33 / unKover
  PoC Anti-Rootkit/Anti-Cheat Driver.
  ☆194Updated 3 weeks ago
• xenoscr / manual-syscall-detect
  A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.
  ☆110Updated 3 years ago
• Tserith / Parasite
  Compact MBR Bootkit for Windows
  ☆52Updated 3 years ago
• PI-Defender / pi-defender
  Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.
  ☆152Updated 2 years ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆109Updated 8 months ago
• susMdT / LoudSunRun
  Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven
  ☆220Updated 7 months ago
• lil-skelly / basilisk
  ☆10Updated last month
• gelven4sec / NotPetyaAgain
  PoC of a UEFI Petya ransomware
  ☆42Updated 2 years ago