Alternatives and similar repositories for al-khaser:

Users that are interested in al-khaser are comparing it to the libraries listed below

• d366 / DarkMMap
  Manual PE image mapper
  ☆62Updated 11 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆85Updated 6 years ago
• zeroaceee / EDMapper
  A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.
  ☆63Updated last year
• D34Dspy / Simple-Mutation-Base
  This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does m…
  ☆34Updated 7 years ago
• nihilboy / anti
  Automated Integration of anti-Reversing methods in PE executables
  ☆48Updated 6 years ago
• t3ssellate / unmapper
  An automatic tool for fixing dumped PE files
  ☆41Updated 4 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆144Updated 5 years ago
• SamLarenN / CallbackDisabler
  Disable Driver Callbacks
  ☆99Updated 7 years ago
• ldebug / BetaShield
  BetaShield Windows x86 Ring3 Anticheat v2
  ☆37Updated 8 years ago
• osiris123 / CDriver_Loader
  Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.
  ☆47Updated 10 years ago
• SLAUC91 / DLLHiding
  Hiding x32/x64 Modules/DLLs using PEB
  ☆62Updated 9 years ago
• stormshield / Beholder-Win32
  A sample on how to inject a DLL from a kernel driver
  ☆61Updated 8 years ago
• can1357 / safe_capcom
  Capcom wrapper with safety in mind.
  ☆80Updated 6 years ago
• arielkoren / DisablePatchGuard
  disable most common windowsx64 systems patchguard
  ☆84Updated 6 years ago
• Aki2k / BEDaisy
  reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy
  ☆66Updated 4 years ago
• nickcano / ReloadLibrary
  A quick-and-dirty anti-hook library proof of concept.
  ☆102Updated 6 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆49Updated 7 years ago
• arbiter34 / GetProcAddress
  Recreation of GetProcAddress without external dependencies on Windows Libraries
  ☆89Updated 8 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆93Updated 3 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆75Updated 13 years ago
• johnsonjason / Remote-Thread-Executor
  Code injection by hijacking threads in Windows 32-bit applications
  ☆43Updated 6 years ago
• joshfinley / SyscallDumper
  Dump system call codes, names, and offsets from Ntdll.dll
  ☆75Updated last year
• Rat431 / ColdHide
  (DEPRECATED) A simple anti-anti debug library for Windows
  ☆29Updated 4 years ago
• MellowNight / physmem-Scanner
  scans through physical memory and paging tables in kernel mode
  ☆106Updated 4 years ago
• vmcall / eye_mapper
  BattlEye x64 usermode injector
  ☆64Updated 5 years ago
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆65Updated 3 years ago
• danielkrupinski / KernelProcessList
  Example Windows Kernel-mode Driver which enumerates running processes.
  ☆55Updated 2 years ago
• not-wlan / instrumentation-callbacks
  based on https://github.com/secrary/Hooking-via-InstrumentationCallback
  ☆68Updated 5 years ago