Alternatives and similar repositories for singlestep_xorstub

Users that are interested in singlestep_xorstub are comparing it to the libraries listed below

• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆42Updated last year
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• frank2 / blenny
  A payload delivery system which embeds payloads in an executable's icon file!
  ☆74Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 3 years ago
• rad9800 / RansomFS
  ☆31Updated 9 months ago
• HACKE-RC / peritux
  A PE parser written in C++ which does not uses OOP. Helpful if you want to learn about PE parsing.
  ☆17Updated 2 years ago
• winterknife / EVENSTAR
  Intel 64/Windows low-level experiments
  ☆62Updated 3 months ago
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆53Updated 6 months ago
• DeDf / ParseNTFS
  ☆20Updated 5 years ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆57Updated 3 years ago
• rbmm / Noname
  really ?
  ☆12Updated last year
• Stuuxx / awesome-persistence
  Persistence techniques for windows.
  ☆19Updated 2 years ago
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆33Updated 2 years ago
• BlackHat-Ashura / Process_Ghosting
  Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…
  ☆16Updated last year
• mgrube / recon_22
  ☆10Updated 3 years ago
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆12Updated 2 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆43Updated 5 years ago
• zerosum0x0-archive / archive
  ☆57Updated 3 years ago
• rbmm / TL-TASK
  ☆20Updated 3 months ago
• EgeBalci / syscall_api
  ☆38Updated 2 years ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated 10 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆54Updated 5 months ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆52Updated last year
• ioncodes / kdbg-driver-workstation
  ☆14Updated 3 years ago
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆25Updated 3 weeks ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆42Updated 2 years ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆63Updated 3 years ago
• rbmm / Hollowed-Process
  ☆30Updated 3 months ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Updated 3 years ago