Alternatives and similar repositories for hVNC-Recoded:

Users that are interested in hVNC-Recoded are comparing it to the libraries listed below

• AzAgarampur / byeintegrity5-uac
  Bypass UAC at any level by abusing the Task Scheduler and environment variables
  ☆31Updated 3 years ago
• NATsCodes / ProcessHollowing
  Process Hollowing POC in CPP
  ☆15Updated 4 years ago
• alfarom256 / PebLdr
  ☆15Updated 4 years ago
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆27Updated 2 years ago
• GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
  A repository filled with ideas to break/detect direct syscall techniques
  ☆27Updated 2 years ago
• passthehashbrowns / hook-integrity-checks
  ☆20Updated 3 years ago
• d35ha / PEReflectiveInjection
  Remote PE reflective injection with a simple reflective loader
  ☆31Updated 5 years ago
• SaadAhla / BlockNonMSModules
  Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules
  ☆41Updated last year
• maziland / StackBombing
  Next gen process injection technique
  ☆44Updated 4 years ago
• bananabr / Givemeahand
  A PoC tool for exploiting leaked process and thread handles
  ☆30Updated last year
• uvbs / NT-APC-Injector
  APC DLL Injector with NtQueueApcThread and wake up thread support
  ☆42Updated 7 years ago
• AlionGreen / apc-injection
  Process Injection: APC Injection
  ☆29Updated 4 years ago
• 11philip22 / CodeInjection
  Collection of shellcode injection and execution techniques
  ☆15Updated 3 years ago
• Hagrid29 / herpaderply_hollowing
  Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
  ☆51Updated 2 years ago
• TRIKbranch / RunPE-X86--X64-
  With this RunPE you can easily inject your payload in any x86 or x64 program.
  ☆12Updated 5 years ago
• pr0tean / TelemetrySourcerer-patched
  Tiny driver patch to allow kernel callbacks to work on Win10 21h1
  ☆34Updated 3 years ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆49Updated 3 years ago
• Kara-4search / ProcessHollowing_CSharp
  ProcessHollowing via csharp
  ☆12Updated 3 years ago
• aaaddress1 / knownDlls_Poison
  ☆26Updated 3 years ago
• ph4s3tw0 / GetProcAddressCaseStudies
  Six cases demonstrating methods of optimizing GetProcAddress
  ☆17Updated 3 years ago
• oXis / DoublePulsarPayload
  C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.
  ☆29Updated 3 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 3 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• loneicewolf / smbdoor
  improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys
  ☆49Updated last year
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆51Updated 7 years ago
• SolomonSklash / netntlm
  A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
  ☆33Updated 3 years ago
• AzAgarampur / byeintegrity-lite
  Bypass UAC by abusing shell protocol handlers
  ☆14Updated 3 years ago
• NUL0x4C / ManualRsrcDataFetching
  Get your data from the resource section manually, with no need for windows apis
  ☆58Updated 4 months ago
• FuzzySecurity / AdvSim.Compression
  Simple and sane compression wrapper library.
  ☆18Updated 2 years ago
• PorLaCola25 / NtCreateUserProcess
  ☆12Updated 4 years ago