Alternatives and similar repositories for TrampHooker:

Users that are interested in TrampHooker are comparing it to the libraries listed below

• zimnyaa / beepsyscall
  An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.
  ☆12Updated last year
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆18Updated last year
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆18Updated last year
• TraiLeR2 / CVE-2023-36168
  An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component
  ☆11Updated last year
• D4rthMaulCop / DarthNetLoader
  ☆15Updated last year
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 7 months ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• VirtualAlllocEx / Create_Thread_Inline_Assembly_x86
  This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly
  ☆18Updated 2 years ago
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated 9 months ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆31Updated last year
• rbmm / Services
  ☆18Updated 3 months ago
• Azr43lKn1ght / Rust-ProcHollow
  Process Hollowing in Rust with Process Executable Relocation Support for both 32 and 64 bit architecture environments.
  ☆17Updated 3 months ago
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated last year
• rbmm / PPL
  run process as PPL Antimalware
  ☆10Updated last year
• HackingThings / SuperSneakyExec
  Loading and executing shellcode in C# without PInvoke.
  ☆20Updated 3 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆31Updated last year
• Adepts-Of-0xCC / SnoopyOwl
  ☆48Updated 3 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated last year
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆26Updated 3 weeks ago
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆18Updated this week
• zimnyaa / stoplooking
  A simple BOF that disables some logging with NtSetInformationProcess
  ☆11Updated last year
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆17Updated last year
• thiagomayllart / DarkMelkor
  Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.
  ☆28Updated 3 years ago
• rbmm / Noname
  really ?
  ☆12Updated last year
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆19Updated 3 months ago
• MzHmO / PPLDescribe
  Tool for obtaining information about PPL processes
  ☆17Updated last year