Alternatives and similar repositories for KittyLoader

Users that are interested in KittyLoader are comparing it to the libraries listed below

• RWXstoned / LdrShuffle
  Code execution/injection technique using DLL PEB module structure manipulation
  ☆213Updated 5 months ago
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆125Updated 11 months ago
• warpnet / MS-RPC-Fuzzer
  Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By f…
  ☆312Updated 3 weeks ago
• maxDcb / DreamWalkers
  Reflective shellcode loaderwith advanced call stack spoofing and .NET support.
  ☆219Updated last month
• 0xJs / BlockEDRTraffic
  Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows …
  ☆252Updated last month
• Friends-Security / RedirectThread
  Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
  ☆192Updated 4 months ago
• Teach2Breach / moonwalk
  find dll base addresses without PEB WALK
  ☆149Updated 4 months ago
• tijme / relocatable
  Boilerplate to develop raw and truly Position Independent Code (PIC).
  ☆106Updated 9 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆102Updated 8 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆248Updated 11 months ago
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆134Updated last year
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆131Updated 2 months ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆162Updated 11 months ago
• Teach2Breach / stargate
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆89Updated last week
• Kudaes / Eclipse
  Activation Context Hijack
  ☆170Updated 3 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated 11 months ago
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆145Updated 6 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 10 months ago
• NtDallas / Ulfberht
  Shellcode loader
  ☆94Updated 11 months ago
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆236Updated last year
• 0xTriboulet / rdll-rs
  A reflective DLL development template for the Rust programming language
  ☆109Updated last week
• 0xflux / Hells-Hollow
  Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls
  ☆194Updated 2 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆159Updated 3 months ago
• ColeHouston / Sunder
  Windows rootkit designed to work with BYOVD exploits
  ☆211Updated 9 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆129Updated 10 months ago
• NVISOsecurity / codasm
  Payload encoding utility to effectively lower payload entropy.
  ☆120Updated 7 months ago
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆106Updated last year
• TwoSevenOneT / CreateProcessAsPPL
  This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.
  ☆271Updated 2 weeks ago
• MzHmO / SymProcAddress
  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
  ☆145Updated last year
• Cracked5pider / earlycascade-injection
  early cascade injection PoC based on Outflanks blog post
  ☆232Updated last year