Alternatives and similar repositories for ReflectiveDLLInjection

Users that are interested in ReflectiveDLLInjection are comparing it to the libraries listed below

• monoxgas / sRDI
  Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
  ☆2,297Updated last year
• hasherezade / pe_to_shellcode
  Converts PE into a shellcode
  ☆2,560Updated last year
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,323Updated last week
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,884Updated 2 years ago
• TheWover / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆3,985Updated 7 months ago
• secretsquirrel / SigThief
  Stealing Signatures and Making One Invalid Signature at a Time
  ☆2,237Updated 3 years ago
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,905Updated 2 years ago
• hacksysteam / HackSysExtremeVulnerableDriver
  HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
  ☆2,668Updated 3 months ago
• m0n0ph1 / Process-Hollowing
  Process Hollowing (Malware Technique)
  ☆1,332Updated last month
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,302Updated 3 months ago
• ExpLife0011 / awesome-windows-kernel-security-development
  windows kernel security development
  ☆2,007Updated 2 years ago
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,544Updated 2 years ago
• hfiref0x / KDU
  Kernel Driver Utility
  ☆2,147Updated 6 months ago
• DarthTon / Blackbone
  Windows memory hacking library
  ☆5,104Updated last year
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,222Updated last week
• EgeBalci / amber
  Reflective PE packer.
  ☆1,294Updated last year
• jthuraisamy / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆1,682Updated 2 years ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,228Updated last year
• Mattiwatti / PPLKiller
  Protected Processes Light Killer
  ☆931Updated 2 years ago
• hfiref0x / TDL
  Driver loader for bypassing Windows x64 Driver Signature Enforcement
  ☆1,124Updated 5 years ago
• x64dbg / ScyllaHide
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆3,704Updated last year
• hasherezade / demos
  Demos of various injection techniques found in malware
  ☆791Updated 3 years ago
• fancycode / MemoryModule
  Library to load a DLL from memory.
  ☆2,952Updated last year
• NytroRST / ShellcodeCompiler
  Shellcode Compiler
  ☆1,105Updated 9 months ago
• silverf0x / RpcView
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆976Updated last year
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,442Updated this week
• mandiant / flare-floss
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,552Updated this week
• matterpreter / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆2,450Updated last year
• theevilbit / injection
  ☆814Updated 5 years ago
• bytecode77 / r77-rootkit
  Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
  ☆1,934Updated 2 months ago