Alternatives and similar repositories for Malware_Specimens

Users that are interested in Malware_Specimens are comparing it to the libraries listed below

• 0prrr / Malwear-Sweet
  Malware?
  ☆70Updated 7 months ago
• rbmm / SC
  shell code example
  ☆49Updated this week
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆103Updated last year
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆74Updated 9 months ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆151Updated 2 months ago
• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆83Updated 2 years ago
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆159Updated 7 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆63Updated 10 months ago
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆101Updated last year
• 0xPrimo / KMDllInjector
  kernel-mode DLL Injector
  ☆74Updated 3 weeks ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆78Updated 3 months ago
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated 10 months ago
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆105Updated 2 weeks ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆83Updated last year
• OtterHacker / SetProcessInjection
  ☆151Updated last year
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆52Updated 11 months ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 6 months ago
• zero2504 / Early-Cryo-Bird-Injections
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆95Updated last month
• mansk1es / GhostFart
  ☆136Updated last year
• maziland / StackBombing
  Next gen process injection technique
  ☆53Updated 4 years ago
• decoder-it / RelabelAbuse
  ☆61Updated 11 months ago
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆131Updated 9 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆89Updated 11 months ago
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆66Updated 7 months ago
• securifybv / BOFRyptor
  ☆123Updated last year
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆61Updated last year
• xforcered / Being-A-Good-CLR-Host
  ☆106Updated 4 months ago
• xalicex / LOLDrivers_finder
  ☆83Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆56Updated 8 months ago