Alternatives and similar repositories for obfuscatxor

Users that are interested in obfuscatxor are comparing it to the libraries listed below

• furax124 / Protect_Loader
  A fucking real shellcode loader with a GUI. Work-in-Progress.
  ☆75Updated last month
• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆26Updated 3 months ago
• EvilBytecode / TaskMgr-Troll
  Troll TaskManager, and play with it .
  ☆23Updated this week
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆109Updated last week
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated last year
• almounah / superdeye
  Indirect Syscall with TartarusGate Approach in Go
  ☆128Updated last month
• EvilBytecode / EByte-Pattern-AmsiPatch
  Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…
  ☆21Updated 2 months ago
• Jhangju / goLang-injectors
  This project will guide yout to awareness of injection in almost every window API and process.
  ☆25Updated 3 years ago
• EvilBytecode / RubyRedOps
  💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
  ☆10Updated 3 months ago
• EvilBytecode / Ntdll-Unhook
  Unhook Ntdll.dll, Go & C++.
  ☆27Updated 3 months ago
• githubesson / chrome_abe_poc
  golang decryption poc of the new app bound encryption introduced in chrome version 127.
  ☆21Updated 9 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆113Updated 7 months ago
• KingKDot / Exorcism
  The first open source runtime windows batch and command line deobfuscator
  ☆30Updated 2 weeks ago
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆37Updated 2 years ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆103Updated 3 months ago
• MpCmdRun / uac-bypass
  ATL.dll and WmiMgmt.msc UAC Bypass
  ☆13Updated 3 months ago
• EvilBytecode / Evilbytecode-Anti-VM
  Measures average CPU cycles for the CPUID instruction to detect if the code is running in a VM by comparing against a threshold.
  ☆21Updated 3 months ago
• ZeroMemoryEx / CVE-2025-26125
  (0day) Local Privilege Escalation in IObit Malware Fighter
  ☆146Updated 4 months ago
• almounah / go-buena-clr
  Good CLR Host with Native patchless AMSI Bypass
  ☆84Updated 3 months ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆72Updated last month
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆62Updated last year
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆130Updated 11 months ago
• NtDallas / Ulfberht
  Shellcode loader
  ☆91Updated 8 months ago
• r0keb / TrashFormer
  A 64 bit executable junk code engine for polymorphic malware.
  ☆64Updated last month
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated last year
• x0reaxeax / SilentWrite
  PoC arbitrary WPM without a process handle
  ☆19Updated 2 years ago
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆48Updated 2 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 4 months ago
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆105Updated last year
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆76Updated 11 months ago