Alternatives and similar repositories for simple_rootkit

Users that are interested in simple_rootkit are comparing it to the libraries listed below

• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆210Updated 4 years ago
• bootkitsbook / rootkits
  ☆108Updated 6 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆133Updated 2 years ago
• Fare9 / Windows-Internals
  My repository to upload drivers from different books and all the information related to windows internals.
  ☆163Updated 6 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆98Updated 4 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆259Updated 4 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆235Updated 2 years ago
• hugsy / CFB
  CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.
  ☆333Updated last year
• SinaKarvandi / Misc
  This is a place to share my miscellaneous projects.
  ☆116Updated 5 years ago
• therealdreg / x64dbg-exploiting
  Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
  ☆90Updated last year
• magnussen7 / Embuche
  Anti-reverse Compilation
  ☆34Updated 4 years ago
• waleedassar / RestrictedKernelLeaks
  ☆165Updated 4 years ago
• raminfp / basic-windows-kernel-programming
  Windows Kernel Programming
  ☆133Updated 5 years ago
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆256Updated 3 years ago
• r3p3r / nixawk-awesome-windows-exploitation
  ☆199Updated 8 years ago
• lfontesm / PEB-Walk
  ☆12Updated 4 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆125Updated 6 years ago
• VergiliusProject / vergilius-project
  This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…
  ☆231Updated 2 months ago
• season-lab / bluepill
  BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
  ☆128Updated 4 years ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 3 years ago
• 86hh / DreamLoader
  Simple 32/64-bit PEs loader.
  ☆138Updated 7 years ago
• jthuraisamy / ioctlpus
  ☆129Updated 5 years ago
• RixedLabs / Community-Papers
  RIXED LABS is open for contributions for it's community papers . If you want to publish a blog or a paper , it will be added to the site…
  ☆80Updated 3 years ago
• eLoopWoo / zwhawk
  A kernel rootkit with remote command and control interface for windows
  ☆109Updated 7 years ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆121Updated 6 years ago
• ayoubfaouzi / windows-internals
  My notes while studying Windows internals
  ☆443Updated last year
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆213Updated 5 years ago
• omerk2511 / Sparta
  A virtualization-based endpoint security solution for Windows
  ☆88Updated 4 years ago
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆110Updated 5 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆185Updated 6 years ago