Alternatives and similar repositories for EQGRP

Users that are interested in EQGRP are comparing it to the libraries listed below

• frank2 / blenny
  A payload delivery system which embeds payloads in an executable's icon file!
  ☆74Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 2 years ago
• Idov31 / rustomware
  Simple ransomware written in Rust. Part of the building a rustomware blog post.
  ☆34Updated 2 years ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆63Updated 3 years ago
• cyberark / malware-research
  ☆37Updated 7 months ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆129Updated 4 years ago
• SleepTheGod / Windows-Atom-Table-Hijacking
  A privilege escalation vulnerability exists in Windows due to a flaw in the implementation of the Atom Table. An attacker could exploit t…
  ☆28Updated last year
• jakabakos / CVE-2023-36884-MS-Office-HTML-RCE
  MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit
  ☆41Updated 2 years ago
• nullsection / Discord-DLL-Hijacking
  This is a simple example of DLL hijacking enabling proxy execution.
  ☆64Updated 2 years ago
• ka7ana / CVE-2023-36025
  Quick test for CVE-2023-26025 behaviours
  ☆12Updated last year
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆28Updated 6 months ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated 2 years ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• BlackHat-Ashura / Process_Ghosting
  Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…
  ☆16Updated last year
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆33Updated 2 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• EgeBalci / syscall_api
  ☆37Updated 2 years ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆50Updated 4 months ago
• Rizer0 / Ropdump
  ROPDump is a command-line tool designed to analyze binary executables for potential Return-Oriented Programming (ROP) gadgets, buffer ove…
  ☆86Updated last year
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆67Updated 3 years ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆19Updated 2 years ago
• hackerhouse-opensource / MsSettingsDelegateExecute
  Bypass UAC on Windows 10/11 x64 using ms-settings DelegateExecute registry key.
  ☆79Updated 3 years ago
• kyleavery / pendulum
  Linux Sleep Obfuscation
  ☆105Updated last year
• kargisimos / dolus
  x86_64 LKM linux rootkit
  ☆16Updated 2 years ago
• zerosum0x0-archive / archive
  ☆57Updated 3 years ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆59Updated 8 months ago
• sourcefrenchy / DEFCON-30---Exotic-Data-Exfiltration
  Slides from my talk at the Adversary Village, Defcon 30
  ☆29Updated 2 years ago
• ProcessusT / CobaltStrikeBypassDefender
  A launcher to load a DLL with xored cobalt strike shellcode executed in memory through process hollowing technique
  ☆27Updated 2 years ago
• IntelBroker / Endurance-Wiper
  a small wiper malware programmed in c#
  ☆58Updated 2 years ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year