Alternatives and similar repositories for rpv

Users that are interested in rpv are comparing it to the libraries listed below

• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆25Updated 5 months ago
• rbmm / DirectSysCall
  ☆12Updated 2 years ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆17Updated last year
• rbmm / Services
  ☆18Updated 9 months ago
• rbmm / Hollowed-Process
  ☆30Updated last month
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆28Updated last year
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆19Updated 8 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆33Updated last year
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆32Updated 2 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆20Updated 9 months ago
• Slowerzs / CryptDecryptMemory
  ☆31Updated 10 months ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆27Updated 2 years ago
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆20Updated 2 years ago
• rbmm / ARL
  ☆24Updated 8 months ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆35Updated last year
• outflanknl / unmanaged-dotnet-patch
  Modify managed functions from unmanaged code
  ☆52Updated last year
• farfella / in-memory-cpython
  An In-memory Embedding of CPython
  ☆30Updated 4 years ago
• rbmm / LdrpKernel32DllName
  ☆84Updated last year
• kozmer / silentpulse
  single-threaded event driven sleep obfuscation poc for linux
  ☆35Updated 3 months ago
• zimnyaa / fiber-stager
  A simple Nim stager (w/ fiber execution)
  ☆18Updated 3 years ago
• jonny-jhnson / MSFT_DriverBlockList
  Repository of Microsoft Driver Block Lists based off of OS-builds
  ☆40Updated last year
• yoavshah / ImportlessApi
  ☆17Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆27Updated 5 years ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆27Updated 5 months ago
• rbmm / SDD
  Self Delete DLL
  ☆23Updated last year
• CyberCX-STA / Peep
  A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.
  ☆13Updated last year