Alternatives and similar repositories for SysCaller

Users that are interested in SysCaller are comparing it to the libraries listed below

• idkhidden / WinApiPatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆42Updated 9 months ago
• li4321 / GhostInjector
  ☆45Updated 4 months ago
• byte2mov / codecave-hook
  codecave hook reverse engineering toolkit.
  ☆37Updated last year
• xsh3llsh0ck / MilkBox
  Tool to dump EFI runtime drivers.
  ☆36Updated last year
• C5Hackr / Eclipse
  A unique introduction to native runtime obfuscation.
  ☆19Updated 3 months ago
• C5Hackr / Segment-Encryption
  ☆25Updated 8 months ago
• crvvdev / vac-bypass-kernel
  Fully working kernel-mode VAC bypass
  ☆75Updated 4 months ago
• S12cybersecurity / AntiVM
  C++ Class with various techniques to detect the execution in a virtualized environment
  ☆13Updated last year
• 0x1c1101 / blazing_asm
  Simple, fast and lightweight Header-Only C++ Assembler Library
  ☆62Updated 2 weeks ago
• SkarSys / windows-kernel-trojan
  A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)
  ☆32Updated 8 months ago
• ManulMap / malstring
  Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.
  ☆22Updated last year
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆85Updated 2 months ago
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆122Updated 2 years ago
• EvilBytecode / Sryxen-Stealer-Paid-Source
  Stealer in c++.
  ☆42Updated 2 months ago
• SamuelTulach / MemoryGuard
  Experiment with PAGE_GUARD protection to hide memory from other processes
  ☆46Updated last year
• 4l3x777 / dse_pg_bypass
  DSE & PG bypass via BYOVD attack
  ☆51Updated last year
• NotRequiem / antidbg
  C/C++ antidebugging library for Windows
  ☆22Updated 5 months ago
• Sherman0236 / XorData
  A C++17 framework designed to enable obfuscation of constants, variables, and strings.
  ☆25Updated last year
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆26Updated 5 years ago
• Fatmike-GH / Fatpack
  A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support
  ☆57Updated last week
• SamuelTulach / HookGuard
  Hooking Windows' exception dispatcher to protect process's PML4
  ☆178Updated 5 months ago
• SurgeGotTappedAgain / Window-Hijack
  ☆57Updated last year
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆118Updated last year
• benheise / KUCSharedMemory
  Kernel<->Usermode shared memory communcation using manually mapped driver
  ☆22Updated 3 years ago
• Azvanzed / CVE-2024-44083
  Makes IDA (most versions) to crash upon opening it.
  ☆92Updated 9 months ago
• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆19Updated 2 years ago
• Soju06 / kernelLoader
  Windows 10/11 unsigned kernel driver load/debugging
  ☆12Updated 2 years ago
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆80Updated 5 months ago
• 0mWindyBug / DataptrHooks
  ntoskrnl .data hooks for UM-KM communication
  ☆40Updated last year
• xsh3llsh0ck / ResilienceKit
  Another UEFI runtime bootkit
  ☆29Updated 2 years ago