Alternatives and similar repositories for PhishSticks

Users that are interested in PhishSticks are comparing it to the libraries listed below

• HadarShahar / process-hiders
  Hides processes from the windows task manager using IAT hooking.
  ☆19Updated 4 years ago
• bharadwajyas / ppdump-public
  Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…
  ☆23Updated 5 years ago
• quiggleypuff / EvilProfiler
  Simple .NET profiler shellcode loader
  ☆10Updated 3 years ago
• 0xflagplz / _x64_Loader
  Utilizing Alternative Shellcode Execution Via Callbacks
  ☆13Updated last year
• itaymigdal / some-scripts
  Some Cyber Security related scripts
  ☆18Updated 2 years ago
• wafinfo / SyscallLoader
  SyscallLoader
  ☆11Updated 3 years ago
• Narumiii / phantommap
  Phantom DLL Hollowing method implemented in modmap
  ☆17Updated 4 years ago
• CobblePot59 / ad-cve-privesc
  ☆10Updated 7 months ago
• Xre0uS / KiD
  A malicious keyboard that delivers a multi-staged attack, consisting of a trojan payload which can bypass antivirus, with Windows machine…
  ☆13Updated 3 months ago
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆19Updated 7 months ago
• SafeBreach-Labs / CoWTools
  Tools for analyzing Windows containers and break container's isolation
  ☆32Updated 2 years ago
• rbmm / PPL
  run process as PPL Antimalware
  ☆10Updated last year
• wecooperate / iSwordSDK
  iSwordSDK （Provide Powerful Kernel API For Ring3 Applications）
  ☆15Updated 3 years ago
• timwhitez / Doge-Obf
  golang String Obfuscate
  ☆9Updated 3 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago
• D4rthMaulCop / DarthNetLoader
  ☆15Updated last year
• NUL0x4C / T.D.P.
  Using Thread Description To Hide Shellcodes
  ☆14Updated 2 years ago
• oxfemale / ComObjShellcodeLoader
  ComObject Shellcode Loader with fake return address
  ☆12Updated 3 years ago
• arsium / BypassGetModuleBaseAddressAndGetExportAddress
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆21Updated 3 years ago
• aaaddress1 / knownDlls_Poison
  ☆26Updated 3 years ago
• rasta-mouse / EncryptedKeyExchange
  ☆10Updated 3 years ago
• Altelus1 / c2_tor
  ☆10Updated 3 years ago
• okppp990 / phishlets
  ☆10Updated 2 years ago
• bufferbandit / silent_cleanup_uac_bypass
  Silent Cleanup UAC Bypass POC
  ☆11Updated 5 years ago
• pwn1sher / RTImplant
  Just another casual shellcode native loader
  ☆24Updated 3 years ago
• williamknows / CodeCoverageModuleStomping
  ☆12Updated 5 years ago
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆31Updated 2 years ago
• rbmm / LIB
  ☆7Updated 3 months ago
• w1u0u1 / Dll2Shellcode
  Convert native dll to shellcode, and support exported function
  ☆22Updated 4 years ago
• lem0nSec / Alcatraz
  An example of Windows self-replicating malware.
  ☆11Updated 2 years ago