Alternatives and similar repositories for Alcatraz

Users that are interested in Alcatraz are comparing it to the libraries listed below

• zer0condition / ReverseKit
  x64 Dynamic Reverse Engineering Toolkit
  ☆715Updated 2 years ago
• XaFF-XaFF / Cronos-Rootkit
  Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
  ☆928Updated 3 years ago
• es3n1n / obfuscator
  PE bin2bin obfuscator
  ☆791Updated last month
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,253Updated last year
• ZeroMemoryEx / Chaos-Rootkit
  Now You See Me, Now You Don't
  ☆994Updated last week
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,571Updated 2 weeks ago
• mgeeky / ThreadStackSpoofer
  Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation fr…
  ☆1,176Updated 3 years ago
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,978Updated 3 years ago
• JustasMasiulis / lazy_importer
  library for importing functions from dlls in a hidden, reverse engineer unfriendly way
  ☆1,846Updated 2 years ago
• matthieu-hackwitharts / Win32_Offensive_Cheatsheet
  Win32 and Kernel abusing techniques for pentesters
  ☆969Updated 2 years ago
• hfiref0x / KDU
  Kernel Driver Utility
  ☆2,293Updated 3 weeks ago
• vxlang / vxlang-page
  protector & obfuscator & code virtualizer
  ☆654Updated last week
• XaFF-XaFF / Black-Angel-Rootkit
  Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
  ☆645Updated 2 years ago
• hasherezade / exe_to_dll
  Converts a EXE into DLL
  ☆1,347Updated 2 months ago
• am0nsec / HellsGate
  Original C Implementation of the Hell's Gate VX Technique
  ☆1,125Updated 4 years ago
• aaaddress1 / RunPE-In-Memory
  Run a Exe File (PE Module) in memory (like an Application Loader)
  ☆931Updated 4 years ago
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,214Updated last year
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆795Updated 4 years ago
• jthuraisamy / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆1,761Updated 3 years ago
• skadro-official / skCrypter
  Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+
  ☆788Updated 4 years ago
• Cracked5pider / Stardust
  A modern 32/64-bit position independent implant template
  ☆1,267Updated 8 months ago
• winsiderss / phnt
  Native API header files for the System Informer project.
  ☆1,288Updated 6 months ago
• frkngksl / Shoggoth
  Shoggoth: Asmjit Based Polymorphic Encryptor
  ☆759Updated last year
• tothi / dll-hijack-by-proxying
  Exploiting DLL Hijacking by DLL Proxying Super Easily
  ☆539Updated 2 years ago
• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆554Updated 2 years ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,258Updated last year
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆727Updated last year
• klezVirus / SilentMoonwalk
  PoC Implementation of a fully dynamic call stack spoofer
  ☆860Updated last year
• d35ha / CallObfuscator
  Obfuscate specific windows apis with different apis
  ☆1,017Updated 4 years ago
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,302Updated 3 weeks ago