Alternatives and similar repositories for HVNC:

Users that are interested in HVNC are comparing it to the libraries listed below

• AlSch092 / HideStaticReferences
  Research into removing strings & API call references at compile-time (Anti-Analysis)
  ☆25Updated 10 months ago
• Intrus1ve / Runpe-ProcessHollowing
  Fud Runpe Av Evasion / All Av Bypass
  ☆33Updated 2 years ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆144Updated last month
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆44Updated last year
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆65Updated 2 weeks ago
• Goodies365 / YandexDecrypt
  Decrypting yandex browser passwords
  ☆13Updated 2 weeks ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆103Updated 2 years ago
• Chainski / PandaLoader
  A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.
  ☆44Updated last week
• 0prrr / Malwear-Sweet
  Malware?
  ☆69Updated 6 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆74Updated 8 months ago
• ameenalkurdy / ETWShellcodeLoader
  Shellcode Loader Utilizing ETW Events
  ☆63Updated last month
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated 9 months ago
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆69Updated last year
• AzAgarampur / byeintegrity9-uac
  ☆36Updated 2 years ago
• EvilBytecode / EByte-Shellcode-Loader
  shellcode loader that uses indirect syscalls written in D Lang The loader bypasses user-mode hooks by resolving system calls manually fro…
  ☆9Updated 7 months ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆54Updated 8 months ago
• C5Hackr / Segment-Encryption
  ☆23Updated 6 months ago
• NtDallas / Fenrir
  stack spoofing
  ☆84Updated 5 months ago
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆41Updated 11 months ago
• capt-meelo / KernelCallbackTable-Injection
  Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
  ☆122Updated 3 years ago
• EvilBytecode / Sryxen-Stealer-Paid-Source
  It was a great run, but everything must come to an end. Please don’t contact me. Before I go, here’s a final gift :)
  ☆23Updated last month
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆34Updated last year
• maziland / StackBombing
  Next gen process injection technique
  ☆52Updated 4 years ago
• XShar / BypassAV_Framework
  Test antiviruses
  ☆12Updated last year
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆89Updated 10 months ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆57Updated 8 months ago
• WKL-Sec / StackMask
  A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
  ☆62Updated last year
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆84Updated 2 years ago
• nseckt / Thread-Pool-Injection-PoC
  Proof of concept code for thread pool based process injection in Windows.
  ☆115Updated 3 weeks ago