Alternatives and similar repositories for ImportlessApi

Users that are interested in ImportlessApi are comparing it to the libraries listed below

• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 3 years ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• rbmm / Services
  ☆18Updated 4 months ago
• bot984397 / eepy
  ☆31Updated last month
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
  A repository filled with ideas to break/detect direct syscall techniques
  ☆27Updated 3 years ago
• zimnyaa / inmembof.py
  A small example of loading BOFs in Python with pure reflection
  ☆19Updated 2 years ago
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆30Updated 2 years ago
• OffenseTeacher / Steganim
  ☆48Updated last year
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 3 years ago
• FuzzySecurity / SAFACon-Vienna
  ☆23Updated last year
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆27Updated last year
• rbmm / SDD
  Self Delete DLL
  ☆23Updated last year
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 6 months ago
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆29Updated 3 years ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆45Updated 2 years ago
• leftp / FirewallMoniker
  A C# implementation that disables Windows Firewall bypassing UAC
  ☆15Updated 7 months ago
• OffenseTeacher / NimSkrull
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆12Updated 2 years ago
• LethalSnake1337 / PE-Loader-exercise
  A simple PE loader.
  ☆26Updated 2 years ago
• chryzsh / linux_bof
  ELF Beacon Object File (BOF) Template
  ☆19Updated 6 months ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆27Updated 2 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated 2 years ago
• passthehashbrowns / DInvokeProcessHollowing
  ☆28Updated 4 years ago
• zimnyaa / stoplooking
  A simple BOF that disables some logging with NtSetInformationProcess
  ☆13Updated last year
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆21Updated last month
• 0xjbb / vehspoof
  Callstack spoofing using a VEH because VEH all the things.
  ☆21Updated 2 months ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆54Updated 3 years ago