Alternatives and similar repositories for suspendedunhook:

Users that are interested in suspendedunhook are comparing it to the libraries listed below

• crummie5 / Freshycalls_PoC
  A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯
  ☆40Updated 4 years ago
• waldo-irc / JYang
  ☆14Updated 2 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆92Updated 3 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• hackerhouse-opensource / envschtasksuacbypass
  Bypass UAC elevation on Windows 8 (build 9600) & above.
  ☆54Updated 2 years ago
• mobdk / Sigma
  Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx
  ☆14Updated 3 years ago
• NUL0x4C / ManualRsrcDataFetching
  Get your data from the resource section manually, with no need for windows apis
  ☆58Updated 4 months ago
• GetRektBoy724 / HalosUnhooker
  Halos Gate-based NTAPI Unhooker
  ☆50Updated 2 years ago
• xpn / ObjectOverloadingPOC
  ☆59Updated 3 years ago
• Allevon412 / BreadManModuleStomping
  ☆42Updated last year
• Cobalt-Strike / obfuscator-llvm
  ☆45Updated last year
• Hagrid29 / herpaderply_hollowing
  Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
  ☆52Updated 2 years ago
• SolomonSklash / COM-Hijacking
  An example of COM hijacking using a proxy DLL.
  ☆28Updated 3 years ago
• janoglezcampos / FindItByCalls
  Hacky code for extracting calls in DLLs by function
  ☆14Updated 2 years ago
• S3cur3Th1sSh1t / SharpUnhooker
  C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
  ☆22Updated last year
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆28Updated 3 years ago
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆41Updated last year
• thesnoom / extps-cobalt-strike-bof
  Extended Process List (Search functionality)
  ☆29Updated 4 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated last year
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆45Updated 2 years ago
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆70Updated last year
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆54Updated 2 months ago
• redteamertips / DinvokeDupetokenAndThreadSwitcheroo
  ☆24Updated 3 years ago
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆47Updated last year
• EspressoCake / Process_Protection_Level_BOF
  ☆56Updated 3 years ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆27Updated 2 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆52Updated 4 years ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆53Updated last year
• LloydLabs / process-enumeration-stealth
  ☆80Updated 6 months ago