Alternatives and similar repositories for singlestep_xorstub

Users that are interested in singlestep_xorstub are comparing it to the libraries listed below

• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• Stuuxx / awesome-persistence
  Persistence techniques for windows.
  ☆19Updated 2 years ago
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆36Updated last year
• rbmm / TL-TASK
  ☆20Updated last month
• rad9800 / RansomFS
  ☆31Updated 8 months ago
• winterknife / EVENSTAR
  Intel 64/Windows low-level experiments
  ☆62Updated 2 months ago
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆53Updated 5 months ago
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/User Mode Exploitation writeups and exploits
  ☆24Updated 3 weeks ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• frank2 / blenny
  A payload delivery system which embeds payloads in an executable's icon file!
  ☆74Updated last year
• DeDf / ParseNTFS
  ☆19Updated 5 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• lleon1435 / Kernel_VADInjector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆52Updated 2 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Updated 3 years ago
• cocomelonc / hack-process-hacker2
  Proof of Concept example for abusing Process Hacker 2 (v2.39.124)
  ☆25Updated last year
• DISREL / Ring0VBA
  CVE-2018-6066 using VBA
  ☆68Updated 3 years ago
• mgrube / recon_22
  ☆10Updated 3 years ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆52Updated last year
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆49Updated 3 years ago
• BlackHat-Ashura / Process_Ghosting
  Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…
  ☆16Updated last year
• Slowerzs / KeyJumper
  ☆51Updated 7 months ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆67Updated 8 months ago
• yoavshah / ImportlessApi
  ☆17Updated last year
• m3rcer / IRvana
  Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution
  ☆120Updated this week
• zodiacon / NativePowers
  Native Powers Talk demos
  ☆14Updated 2 years ago
• rbmm / Noname
  really ?
  ☆12Updated last year
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆63Updated 3 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year