Alternatives and similar repositories for QLoader

Users that are interested in QLoader are comparing it to the libraries listed below

• SaadAhla / StackCrypt
  Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume thread…
  ☆160Updated last year
• CognisysGroup / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆217Updated last year
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated 2 years ago
• SaadAhla / BlockOpenHandle
  Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote m…
  ☆168Updated 2 years ago
• buzzer-re / Shinigami
  A dynamic unpacking tool
  ☆134Updated last year
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆45Updated 10 months ago
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆48Updated last year
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆128Updated 2 years ago
• eversinc33 / unKover
  PoC Anti-Rootkit/Anti-Cheat Driver.
  ☆192Updated 2 weeks ago
• dr4k0nia / XorStringsNET
  Easy XOR string encryption for NET based binaries
  ☆138Updated last year
• mdsecactivebreach / com_inject
  ☆199Updated 3 years ago
• Washi1337 / ProxyObjects
  A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET
  ☆47Updated 2 years ago
• capt-meelo / KernelCallbackTable-Injection
  Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
  ☆123Updated 3 years ago
• TheAenema / hm-pe-packer
  A x64 PE Packer/Protector Developed in C++ and VisualStudio
  ☆51Updated last year
• xenoscr / manual-syscall-detect
  A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.
  ☆109Updated 3 years ago
• namazso / dll-universal-patcher
  A universal binary patching dll.
  ☆86Updated 7 months ago
• jdu2600 / CFG-FindHiddenShellcode
  Walks the CFG bitmap to find previously executable but currently hidden shellcode regions
  ☆117Updated last year
• rad9800 / VehApiResolve
  ☆111Updated 2 years ago
• hackerhouse-opensource / SignToolEx
  Patching "signtool.exe" to accept expired certificates for code-signing.
  ☆275Updated 9 months ago
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆40Updated 3 months ago
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆137Updated 2 years ago
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆76Updated last week
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 2 years ago
• adamhlt / Basic-Rootkit
  POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
  ☆55Updated last year
• dlima04 / Thread-Pool-Injection-PoC
  Proof of concept code for thread pool based process injection in Windows.
  ☆115Updated last month
• LloydLabs / ntqueueapcthreadex-ntdll-gadget-injection
  This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret …
  ☆248Updated 2 years ago
• aplyc1a / PEMemoryLoader
  Load static-compiled PE from remote server.
  ☆61Updated 3 years ago
• dr4k0nia / MurkyStrings
  A string obfuscator for .NET apps, built to evade static string analysis.
  ☆104Updated 2 years ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆76Updated 3 years ago
• lem0nSec / CreateRemoteThreadPlus
  CreateRemoteThread: how to pass multiple parameters to the remote thread function without shellcode.
  ☆133Updated last year