Alternatives and similar repositories for darkrat

Users that are interested in darkrat are comparing it to the libraries listed below

• 0x25bit / darkRat_HVNC
  DarkRats Standalone HVNC
  ☆24Updated 3 years ago
• H4xl0r / Necro-Stealer
  ☣️ Necro Stealer + Web Panel
  ☆10Updated 5 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆15Updated 6 years ago
• melardev / XeytanWin32-RAT
  WORK IN PROGRESS. RAT written in C++ using Win32 API
  ☆18Updated 5 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆43Updated 8 months ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆35Updated 10 years ago
• AzAgarampur / byeintegrity4-uac
  Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers
  ☆18Updated 3 years ago
• rootm0s / UUB
  UIAccess UAC Bypass using token duplication and keyboard events
  ☆27Updated 5 years ago
• cocomelonc / 2022-01-24-malware-injection-15
  Process injection via KernelCallbackTable
  ☆14Updated 3 years ago
• HFaeiro / Remote-Admin-Tool
  Simple remote administration tool. Written in c++ and MASM.
  ☆18Updated 7 years ago
• Alexuiop1337 / AntiDisassembly
  Basic disassembly technique to slow down disasm process
  ☆10Updated 5 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆23Updated 5 years ago
• bytecode77 / enter-product-key-privilege-escalation
  Enter Product Key Volatile Environment LPE
  ☆12Updated 6 months ago
• AzAgarampur / byeintegrity-lite
  Bypass UAC by abusing shell protocol handlers
  ☆14Updated 3 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆39Updated 4 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆20Updated 6 years ago
• bytecode77 / sysprep-privilege-escalation
  Sysprep Volatile Environment LPE (2017)
  ☆14Updated 6 months ago
• decay88 / JoeCrypter
  Crypter thingy I made for avoiding automated anti-malware environments. This is to be used for EDUCATIONAL PURPOSES ONLY.
  ☆12Updated 5 years ago
• m0n0ph1 / shellcode-2
  x86 and x86-64 shellcodes for Windows, Mac OSX, Linux, BSD and Solaris
  ☆15Updated 7 years ago
• DamonMohammadbagher / NativePayload_Tinjection
  Remote Thread Injection by C# + Delegate Techniques
  ☆12Updated 2 years ago
• umair-7x / Remote-Access-Tool
  Access windows machine remotely on HTTP
  ☆12Updated 4 years ago
• frego / fwshell
  Reverse Windows shell over TLS
  ☆19Updated 9 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• 1M50RRY / runpe-native-loader
  Loader and RunPE file executer
  ☆17Updated 5 years ago
• d35ha / DumpPE
  Dump mapped PE files from memory to the disk
  ☆20Updated 5 years ago
• d35ha / ShellInjector
  Execute an arbitrary command within the context of another process
  ☆20Updated 5 years ago
• vallejocc / PoC-Hide-Python-Malscript-UnicodeChars
  PoC showing how a potentially malicious script could be hidden, encrypted, into invisible unicode characters
  ☆14Updated 6 years ago
• PorLaCola25 / NtCreateUserProcess
  ☆12Updated 4 years ago
• avarenina / Windows-PE-Injection
  PE Injection with ring3 hook bypass
  ☆10Updated 4 years ago
• FuzzySecurity / SharpSploit
  SharpSploit is a .NET post-exploitation library written in C#
  ☆16Updated 5 years ago