Alternatives and similar repositories for TL-TASK

Users that are interested in TL-TASK are comparing it to the libraries listed below

• rbmm / Hollowed-Process
  ☆30Updated 3 weeks ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆29Updated last year
• bot984397 / eepy
  ☆36Updated 5 months ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆52Updated last year
• Slowerzs / CryptDecryptMemory
  ☆31Updated 9 months ago
• 0xJs / EnumMitigations
  Reports on Driver, LSASS and other security services mitigations
  ☆31Updated 3 weeks ago
• hlldz / misc
  miscellaneous codes
  ☆34Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆30Updated 7 months ago
• 0xjbb / vehspoof
  Callstack spoofing using a VEH because VEH all the things.
  ☆23Updated 5 months ago
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆20Updated 4 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated last year
• zzhsec / NlsCodeInjectionThroughRegistry
  Dll injection through code page id modification in registry. Based on jonas lykk research
  ☆17Updated 3 years ago
• rad9800 / talks
  ☆59Updated 4 months ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆43Updated 10 months ago
• SolomonSklash / COM-Hijacking
  An example of COM hijacking using a proxy DLL.
  ☆40Updated 4 years ago
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆34Updated last year
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆26Updated 5 months ago
• mannyfred / MentalTi
  Mentally ill EtwTi parser
  ☆65Updated last month
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• Slowerzs / KeyJumper
  ☆50Updated 5 months ago
• FuzzySecurity / SAFACon-Vienna
  ☆23Updated last year
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated 2 years ago
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆28Updated last year
• rxOred / process-hollowing
  process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread
  ☆30Updated 3 years ago
• passthehashbrowns / VectoredExceptionHandling
  ☆93Updated last year
• mez-0 / citadel
  A Payload Analysis Framework
  ☆85Updated 2 months ago
• rasta-mouse / pwnlift
  Easy peasy file uploads
  ☆23Updated 2 weeks ago
• lleon1435 / Kernel_VADInjector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆50Updated last year
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated last year