Alternatives and similar repositories for learning

Users that are interested in learning are comparing it to the libraries listed below

• wes4m / unHooker
  Kernel (Ring0) - SSDT unhook driver
  ☆15Updated 7 years ago
• NtRaiseHardError / LeakMyAV
  Program to leak anti-virus behaviour and such
  ☆14Updated 6 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 6 years ago
• zhuhuibeishadiao / exploit-RemoteDesktopServerDriver
  exploit termdd.sys(support kb4499175)
  ☆61Updated 6 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆22Updated 7 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆59Updated 6 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆36Updated 8 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• yuvatia / Win10GdiExploitation
  Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.
  ☆24Updated 7 years ago
• AlexRuzin / Helios
  A Proof-of-Concept win32 DLL that makes use of netbios session token replay to propagate through a Windows Domain
  ☆25Updated 7 years ago
• HFaeiro / Remote-Admin-Tool
  Simple remote administration tool. Written in c++ and MASM.
  ☆18Updated 7 years ago
• therealdreg / xshellex
  With xshellex you can paste any kind of c-shellcode strings in x64dbg, ollydbg & immunity debugger
  ☆40Updated 2 years ago
• wnewbery / cpphttp
  C++ HTTP 1.1 server & client library with OpenSSL or SChannel (win32 native) TLS support
  ☆25Updated 8 years ago
• mewrev / inject
  Minimal DLL-injection tool.
  ☆37Updated 9 years ago
• SLAUC91 / DLLFinder
  Enumerate the DLLs/Modules using NtQueryVirtualMemory
  ☆32Updated 10 years ago
• revsic / CodeInjection
  Code Injection technique written in cpp language
  ☆33Updated 7 years ago
• John-Yu / Simple_PE_packer
  The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…
  ☆20Updated 8 years ago
• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 11 years ago
• NtRaiseHardError / MIST
  Minimal Intervention and Software Transformation - PoC Packer designed for AV detection bypass
  ☆18Updated 8 years ago
• d35ha / ShellInjector
  Execute an arbitrary command within the context of another process
  ☆21Updated 6 years ago
• diegslva / BypassUAC
  ☆19Updated 9 years ago
• 0x25bit / darkrat
  DarkRat source - beware untested source and resources.
  ☆21Updated 6 years ago
• mgeeky / PE-library
  Lightweight Portable Executable parsing library and a demo peParser application.
  ☆80Updated 2 years ago
• Trietptm-on-Coding-Algorithms / ZeroBank-ring0-bundle
  Kernel-Mode rootkit that connects to a remote server to send & recv commands
  ☆33Updated 7 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated last year
• d35ha / DumpPE
  Dump mapped PE files from memory to the disk
  ☆20Updated 6 years ago
• 0xcpu / dijuno
  POC for a race condition exploit using directory junctions in Windows
  ☆17Updated 5 years ago
• 3gstudent / Catch-specified-file-s-handle
  Enumerate all processes and get specified file's handle,then close it.
  ☆11Updated 7 years ago
• pfussell / pivotal
  A MITM proxy server for reflective DLL injection through WinINet
  ☆15Updated 7 years ago
• melardev / XeytanWin32-RAT
  WORK IN PROGRESS. RAT written in C++ using Win32 API
  ☆19Updated 6 years ago