Alternatives and similar repositories for Rootkit-Arsenal

Users that are interested in Rootkit-Arsenal are comparing it to the libraries listed below

• deroko / activationcontexthook
  ☆34Updated 8 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆66Updated 4 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆22Updated 7 years ago
• majdi / deadlands
  🐧 A simple kernel-level rootkit
  ☆21Updated 9 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 8 years ago
• TalBlum / Anti-Disassembly
  A collection of anti disassembly techniques
  ☆20Updated 8 years ago
• deroko / SPPLUAObjectUacBypass
  ☆46Updated 7 years ago
• nixawk / checksec
  A windbg extension for ASLR/DEP/SafeSEH check
  ☆28Updated 7 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆32Updated 8 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 7 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆39Updated 8 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 10 years ago
• hasherezade / wke_exercises
  My solutions for HackSys Extreme Vulnerable Driver
  ☆12Updated 7 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆37Updated 10 years ago
• DownWithUp / CVE-Stockpile
  Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
  ☆50Updated 5 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 7 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆53Updated 4 years ago
• hasherezade / tag_converter
  ☆23Updated 5 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆51Updated 5 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆32Updated 8 years ago
• Fmk0 / templates
  ☆36Updated 6 years ago
• m0n0ph1 / shellcode-2
  x86 and x86-64 shellcodes for Windows, Mac OSX, Linux, BSD and Solaris
  ☆15Updated 4 months ago
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆33Updated 6 years ago
• zodiacon / AccessMask
  ☆20Updated 6 years ago
• tekwizz123 / HEVD-Exploit-Solutions
  Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…
  ☆22Updated 8 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆36Updated 8 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆37Updated 12 years ago