Alternatives and similar repositories for ReflectiveLoader:

Users that are interested in ReflectiveLoader are comparing it to the libraries listed below

• outflanknl / macho-loader
  ☆80Updated 8 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆73Updated 4 months ago
• Fitretech-Security / dylight
  macOS dylib stager
  ☆32Updated 3 months ago
• decoder-it / RelabelAbuse
  ☆61Updated 11 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆106Updated 6 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆109Updated 7 months ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated last year
• NetSPI / BOF-PE
  An example reference design for a proposed BOF PE
  ☆163Updated 2 weeks ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated 9 months ago
• lap1nou / CLR_Heap_encryption
  ☆99Updated last year
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆113Updated 4 months ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆116Updated 5 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆76Updated 2 months ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆22Updated last year
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆37Updated last month
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆36Updated 5 months ago
• passthehashbrowns / VectoredExceptionHandling
  ☆86Updated 8 months ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆153Updated 5 months ago
• susMdT / ForsHops
  ForsHops
  ☆42Updated last month
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆98Updated last year
• tijme / relocatable
  Boilerplate to develop raw and truly Position Independent Code (PIC).
  ☆51Updated 3 months ago
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆47Updated 2 years ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆63Updated 10 months ago
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆111Updated last year
• xforcered / VectoredExceptionHandling
  ☆32Updated 8 months ago
• xforcered / Being-A-Good-CLR-Host
  ☆105Updated 3 months ago
• Slowerzs / KeyJumper
  ☆43Updated last month
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆80Updated last year
• xforcered / ForsHops
  ForsHops
  ☆114Updated last month
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆57Updated 3 months ago