Alternatives and similar repositories for av-breaking

Users that are interested in av-breaking are comparing it to the libraries listed below

• Darkabode / 0lib
  Zerokit shared code
  ☆17Updated 6 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆36Updated 8 years ago
• DissectMalware / WinNativeIO
  Using Undocumented NTDLL Functions to Read/Write/Delete File
  ☆18Updated 4 years ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆28Updated 7 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 7 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• deroko / SPPLUAObjectUacBypass
  ☆46Updated 7 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• epakskape / greenshellcode
  Green shellcode challenge tools
  ☆22Updated 6 years ago
• whereisr0da / CVE-2018-8414-POC
  Simple poc of CVE-2018-8414 Windows Package Setting RCE Vulnerability
  ☆20Updated 5 years ago
• TDiffff / Pwnsy
  Penetration Testing Tool for Windows 7 => 10
  ☆14Updated 7 years ago
• stolenbytes / apcforthewin
  ☆16Updated 8 years ago
• mandiant / win10_auto
  ☆24Updated 6 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 7 years ago
• conix-security / debug_inject
  Shellcode injection using debugging APIs
  ☆19Updated 11 years ago
• carlospolop / MalwarePoC
  Windows Malware Probe of Concept
  ☆21Updated 3 years ago
• active-labs / Advisories
  ACTIVELabs Security Advisories
  ☆23Updated 4 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 2 weeks ago
• malcomvetter / AntiDebug
  PoC: Prevent a debugger from attaching to managed .NET processes via a watcher process code pattern.
  ☆32Updated 7 years ago
• georgenicolaou / icarus
  The Exploitation Toolkit Icarus is a cross platform software exploitation library that assists in the development of proof of concept exp…
  ☆17Updated 12 years ago
• Cn33liz / HSEVD-VariousExploits
  HackSys Extreme Vulnerable Driver - Various Windows 7 x86 Kernel Exploits
  ☆22Updated 7 years ago
• scriptjunkie / hoarder
  Pack required dlls into a single binary that has no imports and makes direct syscalls on Windows
  ☆28Updated 8 years ago
• vallejocc / Malware-Analysis-Reports-Manual
  My manual analysis of malware families
  ☆13Updated 8 years ago
• smgorelik / CIGslip
  A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…
  ☆18Updated 7 years ago
• irsl / CVE-2020-0728
  Proof of Concept code for CVE-2020-0728
  ☆47Updated 5 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆24Updated 5 years ago
• bytecode77 / performance-monitor-privilege-escalation
  Performance Monitor Volatile Environment LPE
  ☆18Updated 5 months ago
• DimopoulosElias / Primitives
  ☆31Updated 5 years ago
• vallejocc / Malware-Analysis-scripts
  Scripts targeting specific families
  ☆13Updated 8 years ago
• MaxXor / keygenme-v7
  Source code of my KeygenMe V7 challenge
  ☆22Updated 7 years ago