Alternatives and similar repositories for mona

Users that are interested in mona are comparing it to the libraries listed below

• AMOSSYS / MemITM
  Tool to make in memory man in the middle
  ☆125Updated 7 years ago
• 0x00-0x00 / Shellkiller
  A killer reverse-shell script that is able to use a lot of techniques to ensure your shell will pop back to you.
  ☆29Updated 7 years ago
• Antonin-Deniau / cave_miner
  Search for code cave in all binaries
  ☆285Updated last month
• GradiusX / HEVD-Python-Solutions
  Python solutions for the HackSysTeam Extreme Vulnerable Driver
  ☆152Updated 4 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆154Updated 2 years ago
• MarioVilas / shellcode_tools
  Miscellaneous tools written in Python, mostly centered around shellcodes.
  ☆147Updated 10 years ago
• ihack4falafel / OSEE
  Collection of things made during my preparation to take on OSEE
  ☆101Updated 6 years ago
• REal0day / MaliciousPark
  Another Repo of Malware. Enjoy. <3
  ☆59Updated 6 years ago
• sensepost / gdi-palettes-exp
  DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects
  ☆146Updated 8 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆216Updated 5 years ago
• v-p-b / peCloakCapstone
  Platform independent peCloak fork based on Capstone
  ☆107Updated 9 years ago
• secretsquirrel / fido
  Teaching old shellcode new tricks
  ☆207Updated 8 years ago
• cbayet / Exploit-CVE-2017-6008
  Exploits for CVE-2017-6008, a kernel pool buffer overflow leading to privilege escalation.
  ☆118Updated last year
• tyranid / windows-logical-eop-workshop
  ☆235Updated 8 years ago
• zeroSteiner / reflective-polymorphism
  Reflective Polymorphism
  ☆108Updated 7 years ago
• tyranid / ExploitDotNetDCOM
  A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.
  ☆92Updated 11 years ago
• steph3nsims / banned_functions
  IDAPython script to check ELF & PE/COFF for MS SDL banned.h policy violations and set breakpoints.
  ☆36Updated last year
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆139Updated 8 years ago
• FuzzySecurity / HackSysTeam-PSKernelPwn
  ☆142Updated 8 years ago
• tyranid / windows-attacksurface-workshop
  Workshop material for a Windows Attack Surface Analysis Workshop
  ☆68Updated 6 years ago
• zznop / pop-nedry
  x86-64 Windows shellcode that recreates the Jurassic Park hacking scene (Ah, ah, ah... you didn't' say the magic word!)
  ☆84Updated 5 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆178Updated 6 years ago
• MohitDabas / malwinx
  Just a normal flask web app to understand win32api with code snippets and references.
  ☆75Updated 5 years ago
• HexHive / malWASH
  ☆116Updated 9 years ago
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 7 years ago
• hacksysteam / WpadEscape
  Sandbox escape using WinHTTP Web Proxy Auto-Discovery Service
  ☆86Updated 6 years ago
• ustayready / CasperStager
  PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.
  ☆152Updated 6 years ago
• govolution / avepoc
  some pocs for antivirus evasion
  ☆131Updated 2 years ago
• hegusung / AVSignSeek
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆313Updated 7 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆184Updated 6 years ago