Alternatives and similar repositories for hide-and-seek

Users that are interested in hide-and-seek are comparing it to the libraries listed below

• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆51Updated 8 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 4 years ago
• AzAgarampur / byeintegrity5-uac
  Bypass UAC at any level by abusing the Task Scheduler and environment variables
  ☆31Updated 3 years ago
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 2 years ago
• veil-ivy / kapc_injector
  kernel to user mode APC injector
  ☆44Updated 3 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆29Updated 3 years ago
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆85Updated 2 years ago
• rad9800 / VehApiResolve
  ☆111Updated 2 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆71Updated 4 years ago
• AzAgarampur / byeintegrity-lite
  Bypass UAC by abusing shell protocol handlers
  ☆14Updated 3 years ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆76Updated 3 years ago
• pr0tean / TelemetrySourcerer-patched
  Tiny driver patch to allow kernel callbacks to work on Win10 21h1
  ☆34Updated 3 years ago
• NATsCodes / ProcessHollowing
  Process Hollowing POC in CPP
  ☆15Updated 4 years ago
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆40Updated 3 months ago
• xenoscr / manual-syscall-detect
  A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.
  ☆111Updated 3 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆38Updated 3 years ago
• mobdk / CloneProcess
  Clone running process with ZwCreateProcess
  ☆57Updated 4 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆39Updated 4 years ago
• alfarom256 / drivers_and_shit
  ☆59Updated 2 years ago
• AlSch092 / HideStaticReferences
  Research into removing strings & API call references at compile-time (Anti-Analysis)
  ☆27Updated last year
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆57Updated 3 years ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆31Updated last year
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆137Updated 2 years ago
• mathisvickie / CVE-2021-27965
  stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆11Updated 3 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆17Updated 5 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆43Updated 8 months ago
• PaulNorman01 / Dynamizer
  Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.
  ☆19Updated 2 years ago
• Maff1t / InjectNtdllPOC
  Process Injection without R/W target memory and without creating a remote thread
  ☆18Updated 3 years ago
• cdong1012 / Malware-Packer
  ☆13Updated 4 years ago
• TRIKbranch / RunPE-X86--X64-
  With this RunPE you can easily inject your payload in any x86 or x64 program.
  ☆14Updated 6 years ago