Alternatives and similar repositories for Alcatraz

Users that are interested in Alcatraz are comparing it to the libraries listed below

• zer0condition / ReverseKit
  x64 Dynamic Reverse Engineering Toolkit
  ☆705Updated 2 years ago
• es3n1n / obfuscator
  PE bin2bin obfuscator
  ☆764Updated 4 months ago
• XaFF-XaFF / Cronos-Rootkit
  Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
  ☆915Updated 3 years ago
• ZeroMemoryEx / Chaos-Rootkit
  Now You See Me, Now You Don't
  ☆972Updated last week
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,222Updated last year
• hfiref0x / KDU
  Kernel Driver Utility
  ☆2,224Updated last week
• JustasMasiulis / lazy_importer
  library for importing functions from dlls in a hidden, reverse engineer unfriendly way
  ☆1,810Updated 2 years ago
• mgeeky / ThreadStackSpoofer
  Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation fr…
  ☆1,151Updated 3 years ago
• aaaddress1 / RunPE-In-Memory
  Run a Exe File (PE Module) in memory (like an Application Loader)
  ☆923Updated 4 years ago
• vxlang / vxlang-page
  protector & obfuscator & code virtualizer
  ☆624Updated last week
• hasherezade / exe_to_dll
  Converts a EXE into DLL
  ☆1,335Updated last week
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,528Updated 2 months ago
• am0nsec / HellsGate
  Original C Implementation of the Hell's Gate VX Technique
  ☆1,089Updated 4 years ago
• XaFF-XaFF / Black-Angel-Rootkit
  Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
  ☆641Updated last year
• matthieu-hackwitharts / Win32_Offensive_Cheatsheet
  Win32 and Kernel abusing techniques for pentesters
  ☆961Updated last year
• skadro-official / skCrypter
  Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+
  ☆779Updated 4 years ago
• Idov31 / Nidhogg
  Nidhogg is an all-in-one simple to use windows kernel rootkit.
  ☆2,071Updated last week
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,164Updated last year
• frkngksl / Shoggoth
  Shoggoth: Asmjit Based Polymorphic Encryptor
  ☆746Updated last year
• kernelwernel / VMAware
  Advanced VM detection library and tool
  ☆780Updated this week
• Cracked5pider / Stardust
  A modern 32/64-bit position independent implant template
  ☆1,259Updated 5 months ago
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆793Updated 4 years ago
• guidedhacking / GuidedHacking-Injector
  The BEST DLL Injector Library.
  ☆1,224Updated 3 months ago
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,935Updated 3 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆720Updated last year
• ac3ss0r / obfusheader.h
  Obfusheader.h is a portable header file for C++14 compile-time obfuscation.
  ☆767Updated last year
• d35ha / CallObfuscator
  Obfuscate specific windows apis with different apis
  ☆1,009Updated 4 years ago
• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆547Updated last year
• jthuraisamy / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆1,728Updated 2 years ago
• TheCruZ / kdmapper
  KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory
  ☆2,479Updated last week