0xd3xt3r / awesome-windows-rootkitsLinks
Collection of windows rootkits
☆26Updated 5 years ago
Alternatives and similar repositories for awesome-windows-rootkits
Users that are interested in awesome-windows-rootkits are comparing it to the libraries listed below
Sorting:
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆65Updated 7 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆91Updated 6 years ago
- PoC designed to evade userland-hooking anti-virus.☆89Updated 6 years ago
- Gozi-MBR-rootkit Bootkit Modified☆70Updated 8 years ago
- Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware☆52Updated this week
- A kernel rootkit with remote command and control interface for windows☆109Updated 7 years ago
- ☆22Updated 5 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆76Updated 7 years ago
- Ammyy v3 Source Code leak , with ❤️ <3☆39Updated 8 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆49Updated 4 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆35Updated 6 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 4 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆96Updated 4 years ago
- NT AUTHORITY\SYSTEM☆38Updated 5 years ago
- Code that can be used as a reference, library, or inspiration for hacking Windows memory.☆52Updated 5 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Simple 32/64-bit PEs loader.☆138Updated 6 years ago
- PoC for hiding PE exports☆67Updated 4 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆29Updated 4 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆58Updated 5 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- DLL Injection Library & Tools☆71Updated 9 years ago
- Rekall Memory Forensic Framework☆32Updated 6 years ago
- ☆49Updated 5 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- ☆22Updated 4 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆70Updated 3 years ago
- This repo contains all the code that will be referred at https://scriptdotsh.com by Paranoid Ninja☆46Updated 5 years ago
- Set of antianalysis techniques found in malware☆132Updated last year