Alternatives and similar repositories for proxyres:

Users that are interested in proxyres are comparing it to the libraries listed below

• rbmm / remap
  break link between dll and it file on disk
  ☆11Updated 7 months ago
• rbmm / RtlClone
  ☆38Updated 2 months ago
• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆46Updated 10 months ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆48Updated 3 months ago
• rbmm / TPM
  Easy encrypt/decrypt data with TPM
  ☆25Updated last year
• Ap3x / COFF-Loader
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆45Updated last year
• 0xMegaByte / COM-Explained
  ☆25Updated 2 years ago
• C5Hackr / c_syscalls
  https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.
  ☆31Updated 9 months ago
• zodiacon / WinEventHooks
  SetWinEventHook Sample
  ☆47Updated last year
• SolomonSklash / netntlm
  A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
  ☆34Updated 3 years ago
• benheise / TitanLdr
  Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH
  ☆48Updated 3 years ago
• jsecurity101 / MSFT_DriverBlockList
  Repository of Microsoft Driver Block Lists based off of OS-builds
  ☆39Updated last year
• AmitMoshel1 / PatchGuardEncryptorDriver
  An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.
  ☆59Updated 3 weeks ago
• rbmm / SDD2
  Self delete DLL (2)
  ☆14Updated last year
• ch3rn0byl / Gremlins
  ☆14Updated last year
• Slowerzs / CryptDecryptMemory
  ☆30Updated 4 months ago
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆28Updated 2 years ago
• paranoidninja / PI-Tracker
  A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback …
  ☆12Updated 6 months ago
• rbmm / SDD
  Self Delete DLL
  ☆23Updated last year
• hackerhouse-opensource / envschtasksuacbypass
  Bypass UAC elevation on Windows 8 (build 9600) & above.
  ☆54Updated 2 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆27Updated 8 months ago
• Offensive-Panda / PEB_WALK_AND_API_OBFUSCATION_INJECTION
  This exploit use PEB walk technique to resolve API calls dynamically, obfuscate all API calls to perform process injection.
  ☆17Updated 8 months ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆16Updated 9 months ago
• Hagrid29 / herpaderply_hollowing
  Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
  ☆54Updated 2 years ago
• AlSch092 / ModifyExports
  Research of modifying exported function names at runtime (C/C++, Windows)
  ☆17Updated 10 months ago
• zero2504 / Shadow-Rebirth
  Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique
  ☆11Updated 4 months ago
• ph4s3tw0 / GetProcAddressCaseStudies
  Six cases demonstrating methods of optimizing GetProcAddress
  ☆17Updated 3 years ago
• ctxis / DynamicWrapperEx
  x64 Registration-Free In-Process COM Automation Server.
  ☆48Updated 2 years ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆20Updated 2 months ago