Alternatives and similar repositories for keebcap:

Users that are interested in keebcap are comparing it to the libraries listed below

• NetSPI / BOF-PE
  An example reference design for a proposed BOF PE
  ☆126Updated last month
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆100Updated last year
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆50Updated 4 months ago
• NtDallas / Fenrir
  stack spoofing
  ☆80Updated 4 months ago
• lap1nou / CLR_Heap_encryption
  ☆98Updated last year
• mansk1es / GhostFart
  ☆133Updated last year
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆72Updated 2 months ago
• passthehashbrowns / VectoredExceptionHandling
  ☆85Updated 7 months ago
• rbmm / SC
  shell code example
  ☆33Updated last week
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆129Updated 7 months ago
• lem0nSec / Dsebler
  Reimplementation of the KExecDD DSE bypass technique.
  ☆46Updated 6 months ago
• RedTeamOperations / VEH-PoC
  ☆112Updated 2 years ago
• gmh5225 / rust-mordor-rs
  Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library
  ☆27Updated 2 years ago
• HulkOperator / CallStackSpoofer
  ☆25Updated 3 months ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆76Updated 11 months ago
• decoder-it / RelabelAbuse
  ☆61Updated 9 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆73Updated 7 months ago
• Reijaff / offensive_c
  ☆42Updated 2 years ago
• xforcered / Being-A-Good-CLR-Host
  ☆96Updated 2 months ago
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆60Updated 2 months ago
• uf0o / windows-ps-callbacks-experiments
  Files for http://blog.deniable.org/posts/windows-callbacks/
  ☆71Updated 3 years ago
• ngn13 / shrk
  LKM rootkit for modern kernels, with DNS C2 and a simple web interface
  ☆64Updated 2 weeks ago
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆52Updated 2 months ago
• CICADA8-Research / TypeLibWalker
  TypeLib persistence technique
  ☆108Updated 5 months ago
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆93Updated last year
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆74Updated last year
• JanielDary / weetabix
  A C++ PoC implementation for enumerating Windows Fibers directly from memory
  ☆17Updated 10 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆72Updated last month
• Slowerzs / CryptDecryptMemory
  ☆29Updated 3 months ago
• 0prrr / Malwear-Sweet
  Malware?
  ☆69Updated 5 months ago