0x9090 / RunPE

Related projects: ⓘ

• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆63Updated 6 years ago
• aeshes / exe_crypter
  ☆12Updated 7 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆27Updated 4 years ago
• FilipeBorges1993 / Booh-Botnet
  HTTP BOTNET
  ☆7Updated last year
• bytecode77 / slui-file-handler-hijack-privilege-escalation
  Slui File Handler Hijack UAC Bypass Local Privilege Escalation
  ☆88Updated 2 years ago
• oueldz4 / runpe
  ☆20Updated 10 years ago
• joren485 / HollowProcess
  Hollow Process / Dynamic Forking / RunPE injection technique implemented in Python
  ☆50Updated 3 years ago
• Aekras1a / hackingLibrary
  ‪APT,‬ ‪Cyber warfare,‬ ‪Penetration testing,‬ ‪Zero-day,Exploiting,‬Fuzzing,Privilege-Escalation,browser-security‪,Spyware,Malwres evade…
  ☆34Updated 5 years ago
• nyx0 / Alina
  Alina Spark - Point of Sales Trojan
  ☆46Updated 9 years ago
• EgeBalci / CryptAPI
  Ransomware Using CryptoAPI
  ☆13Updated 6 years ago
• zerosum0x0 / r0ak
  ☆18Updated this week
• iGh0st / Crypters
  Various Crypter Project
  ☆50Updated 10 years ago
• codecrack3 / Shortcut-Downloader
  Shortcut Downloader
  ☆11Updated 7 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆25Updated 5 years ago
• ExaByt3s / MalwareSDK
  Botnet SDK Based on Zeus HTTP Malware (Educational Purposes)
  ☆14Updated 5 years ago
• nyx0 / Grum
  The Grum Spam Bot
  ☆20Updated 9 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆65Updated 3 years ago
• HarsaroopDhillon / Titan-Bot
  ☆34Updated this week
• NextSecurity / Gozi-MBR-rootkit
  Gozi-MBR-rootkit Bootkit Modified
  ☆68Updated 7 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆39Updated last week
• Nervous / GreenKit-Rootkit
  GreenKit is an userland rootkit hiding its own files and mining bitcoins on compromised computers. Do /NOT/ download or use this rootkit …
  ☆41Updated 6 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆26Updated 7 years ago
• nyx0 / PowerLoader
  Power Loader botnet
  ☆38Updated 9 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆61Updated 9 years ago
• ambray / ProcessHollowing
  Simple Process Hollowing in C#
  ☆66Updated 6 years ago
• buffermet / sewers
  Modular rootkit framework.
  ☆27Updated 3 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆82Updated 3 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆85Updated 5 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆41Updated 3 years ago
• kafkaesqu3 / subtee-gist-mirror
  few months old but better than nothing
  ☆58Updated 2 years ago