Alternatives and similar repositories for TL-TASK

Users that are interested in TL-TASK are comparing it to the libraries listed below

• bot984397 / eepy
  ☆38Updated 9 months ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆30Updated last year
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆44Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• 0xJs / EnumMitigations
  Reports on Driver, LSASS and other security services mitigations
  ☆34Updated 5 months ago
• zzhsec / NlsCodeInjectionThroughRegistry
  Dll injection through code page id modification in registry. Based on jonas lykk research
  ☆17Updated 3 years ago
• Slowerzs / CryptDecryptMemory
  ☆31Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆54Updated last year
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated 2 years ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated last year
• mannyfred / MentalTi
  Mentally ill EtwTi parser
  ☆66Updated 3 weeks ago
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆30Updated last year
• hlldz / misc
  miscellaneous codes
  ☆36Updated 2 years ago
• rad9800 / talks
  ☆60Updated 9 months ago
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆42Updated last year
• mochabyte0x / TrampoLatte
  A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow
  ☆18Updated 7 months ago
• rbmm / Hollowed-Process
  ☆30Updated 5 months ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆27Updated 9 months ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated 2 years ago
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆28Updated last year
• Kharos102 / interceptor
  Sample Rust Hooking Engine
  ☆36Updated last year
• thiagopeixoto / mystique-self-injection
  An improvement and a different approach to Mockingjay Self-Injection.
  ☆35Updated last year
• passthehashbrowns / VectoredExceptionHandling
  ☆106Updated last year
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆20Updated 8 months ago
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 4 years ago
• kleiton0x00 / RtlHijack
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆78Updated 5 months ago
• chryzsh / linux_bof
  ELF Beacon Object File (BOF) Template
  ☆19Updated last year
• praetorian-inc / swarmer
  A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MAN
  ☆74Updated 2 weeks ago
• silentwarble / hbin_template
  Post-Ex BOF tooling for Hannibal
  ☆24Updated last year
• bohops / COM-to-the-Darkside
  Slides and resources from MCTTP 2025 Talk
  ☆66Updated 3 months ago