Alternatives and similar repositories for shellcode64

Users that are interested in shellcode64 are comparing it to the libraries listed below

• deroko / SPPLUAObjectUacBypass
  ☆46Updated 7 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆22Updated 7 years ago
• deroko / activationcontexthook
  ☆34Updated 8 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆73Updated 9 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 7 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆36Updated 8 years ago
• Jyang772 / HideProcessHookMDL
  A simple rootkit to hide a process
  ☆47Updated 12 years ago
• NextSecurity / Gozi-MBR-rootkit
  Gozi-MBR-rootkit Bootkit Modified
  ☆70Updated 9 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆66Updated 4 years ago
• killswitch-GUI / HotLoad-Driver
  C++
  ☆87Updated 9 years ago
• hasherezade / decryptors_archive
  Archive of ransomware decryptors
  ☆34Updated 8 years ago
• nccgroup / ncloader
  A session-0 capable dll injection utility
  ☆76Updated 7 years ago
• aaaddress1 / HellKitty-In-VC
  Ring3 Rootkit Backdoor.
  ☆43Updated 10 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆59Updated 6 years ago
• d35ha / xKeLogger
  Kernel mode windows NT API logger
  ☆22Updated 6 years ago
• NtRaiseHardError / Anti-Delete
  Protects deletion of files with a specified extension using a kernel-mode driver.
  ☆76Updated 7 years ago
• MojtabaTajik / Sandbox-Detection
  Contains some tricks to detect Sandboxes and gradually completed
  ☆44Updated 8 years ago
• Microwave89 / injector
  Code Injector Using Code Caves
  ☆15Updated 10 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆99Updated 4 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 7 years ago
• ScorchSecurity / Toast
  User-mode hook bypassing method
  ☆33Updated 9 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆52Updated 7 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• NtRaiseHardError / Phage
  Reflective DLL Injection style process infector
  ☆20Updated 7 years ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆28Updated 7 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆90Updated 6 years ago
• xpn / warbird_exploit
  https://blog.xpnsec.com/windows-warbird-privesc/
  ☆31Updated 8 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆57Updated 9 years ago
• owerosu / packerPE32
  Simple PE packer with RtlCompressBuffer
  ☆21Updated 10 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 6 years ago