0xd3xt3r / awesome-windows-rootkits
Collection of windows rootkits
☆25Updated 4 years ago
Related projects: ⓘ
- NT AUTHORITY\SYSTEM☆37Updated 4 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆39Updated last week
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆63Updated 6 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆62Updated 2 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆34Updated 5 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- Rekall Memory Forensic Framework☆29Updated 5 years ago
- 2022 Updated Kernelmode-Code☆29Updated 5 months ago
- ☆31Updated 4 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆65Updated 3 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆65Updated 2 years ago
- ☆22Updated 4 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆47Updated 4 years ago
- A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom☆69Updated 4 years ago
- ☆19Updated 4 years ago
- ☆48Updated 4 years ago
- PoC designed to evade userland-hooking anti-virus.☆85Updated 5 years ago
- In line function hooking LKM rootkit☆51Updated 4 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 4 years ago
- Gozi-MBR-rootkit Bootkit Modified☆68Updated 7 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆48Updated 5 years ago
- ☆49Updated 4 years ago
- GreenKit is an userland rootkit hiding its own files and mining bitcoins on compromised computers. Do /NOT/ download or use this rootkit …☆41Updated 6 years ago
- Write-ups for FireEye's FLARE-On challenges☆25Updated 5 years ago
- ☆29Updated this week
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆117Updated 4 years ago
- ☆87Updated 3 years ago
- Rite Of Passage ROP Injector☆33Updated 5 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆52Updated 5 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆84Updated 5 years ago