Alternatives and similar repositories for NativeImageAnalyzer

Users that are interested in NativeImageAnalyzer are comparing it to the libraries listed below

• joaovarelas / java-remote-class-loader
  ☆31Updated 3 years ago
• baiyies / CrossInject
  32 bit process inject shellcode to 32 bit process and 64 bit process
  ☆36Updated 2 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆49Updated 7 months ago
• jackullrich / memfuck
  A PoC designed to bypass all usermode hooks in a WoW64 environment.
  ☆150Updated 5 years ago
• 0xlane / com-process-inject
  Process Injection via Component Object Model (COM) IRundown::DoCallback().
  ☆61Updated 2 years ago
• MahmoudZohdy / IAT-Obfuscation
  IAT-Obfuscation to make static analysis of executable harder.
  ☆43Updated 4 years ago
• magnusstubman / dll-exports
  Collection of DLL function export forwards for DLL export function proxying
  ☆105Updated last month
• keowu / InstrumentationCallbackToolKit
  A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…
  ☆32Updated 2 years ago
• MahmoudZohdy / DLL-Obfuscation-V2
  Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.
  ☆23Updated 4 years ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆45Updated 5 years ago
• qwqdanchun / RainbowSheep
  Change hash for a signed pe
  ☆16Updated 2 years ago
• PaulNorman01 / Dynamizer
  Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.
  ☆21Updated 2 years ago
• killvxk / awesome-obfuscations
  ☆52Updated 2 months ago
• timwhitez / Doge-sRDI
  Shellcode implementation of Reflective DLL Injection by Golang. Convert DLLs to position independent shellcode
  ☆61Updated 4 years ago
• orca-eaa5a / mploader
  Portable & Custmizable Windows Defender
  ☆12Updated 3 years ago
• bytewreck / hook-buster
  Proof-of-Concept software for detecting AV/EDR hooks in Windows libraries.
  ☆31Updated 3 years ago
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆69Updated last year
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆37Updated 2 years ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆57Updated 9 months ago
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆50Updated last year
• 0xRick / PE-Parser
  https://0xrick.github.io/win-internals/pe8/
  ☆49Updated 3 years ago
• mez-0 / YaraEngine
  A C++ Yara Rule Runner
  ☆12Updated 3 years ago
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated last year
• UmaRex01 / HookSentry
  Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.
  ☆35Updated 5 months ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆53Updated 8 years ago
• M0n7y5 / Shellby
  Small handy tool for crafting shellcodes by hand.
  ☆18Updated 3 years ago
• roadwy / SIGNATURE_TYPE_LUASTANDALONE
  Extracted lua script from Defender mpavbase.vdm and mpasbase.vdm
  ☆16Updated last year
• Wra7h / PEResourceInject
  ☆57Updated 3 years ago
• Thoxy67 / rspe
  Simple Native Rust Reflective PE loader library
  ☆43Updated 2 years ago
• zha0gongz1 / weakenDefenderPriv
  Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.
  ☆31Updated 3 years ago