Alternatives and similar repositories for HVNC

Users that are interested in HVNC are comparing it to the libraries listed below

• LimerBoy / Soviet-Thief
  Yandex browser passwords and credit-cards decryption algorithm
  ☆18Updated 3 months ago
• Goodies365 / YandexDecrypt
  Decrypting yandex browser passwords
  ☆23Updated 3 months ago
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆129Updated 2 months ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆92Updated 2 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆90Updated last year
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆166Updated 4 months ago
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆161Updated last year
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆72Updated last week
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆75Updated 11 months ago
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated last year
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆165Updated 9 months ago
• 0prrr / Malwear-Sweet
  Malware?
  ☆70Updated 9 months ago
• EvilBytecode / Sryxen-Stealer-Paid-Source
  Stealer in c++.
  ☆42Updated 2 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆92Updated 4 months ago
• ameenalkerdy / ETWShellcodeLoader
  Shellcode Loader Utilizing ETW Events
  ☆63Updated 4 months ago
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆180Updated last year
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆155Updated 7 months ago
• CICADA8-Research / TypeLibWalker
  TypeLib persistence technique
  ☆118Updated 8 months ago
• NtDallas / Ulfberht
  Shellcode loader
  ☆89Updated 7 months ago
• naksyn / DojoLoader
  Generic PE loader for fast prototyping evasion techniques
  ☆233Updated last year
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• dk0m / ZeroCrumb
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆57Updated last month
• AlSch092 / HideStaticReferences
  Research into removing strings & API call references at compile-time (Anti-Analysis)
  ☆27Updated last year
• HulkOperator / CallStackSpoofer
  ☆35Updated 6 months ago
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆130Updated 11 months ago
• keowu / BadRentdrv2
  A vulnerable driver exploited by me (BYOVD) that is capable of terminating several EDRs and antivirus software in the market, rendering t…
  ☆98Updated 6 months ago
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆105Updated last year
• RWXstoned / LdrShuffle
  Code execution/injection technique using DLL PEB module structure manipulation
  ☆129Updated last month
• Friends-Security / RedirectThread
  Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
  ☆180Updated last month
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆229Updated 7 months ago