Collection of windows rootkits
☆29Jun 4, 2020Updated 6 years ago
Alternatives and similar repositories for awesome-windows-rootkits
Users that are interested in awesome-windows-rootkits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆34Jun 4, 2019Updated 7 years ago
- post exploitation: dll injection, process hollowing, RunPe, Keyloggers, UacByPass, PayloadEncryption etc..☆13Aug 31, 2017Updated 8 years ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites…☆12Mar 25, 2023Updated 3 years ago
- DarkC0ders net is a open source botnet which is programmed in C#, using the .NET 2.0 Framework.☆10Dec 1, 2019Updated 6 years ago
- Process injection via KernelCallbackTable☆13Jan 28, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ClipBanker Spy Trojan☆11Sep 10, 2024Updated last year
- Hides processes from the windows task manager using IAT hooking.☆22Mar 30, 2021Updated 5 years ago
- layer7 mirai private layer4 ovh bypass nfo bypass☆46Aug 11, 2022Updated 3 years ago
- Thefatrat a massive exploiting tool revealed >> An easy tool to generate backdoor and easy tool to post exploitation attack like browser …☆10Jun 6, 2022Updated 4 years ago
- Malware persistence via COM DLL hijacking. C++ implementation example☆13May 2, 2022Updated 4 years ago
- Malware Classification and Labelling using Deep Neural Networks☆41Feb 1, 2020Updated 6 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago
- Incarcero is a tool that creates Virtual Machines (VMs) preconfigured with malware analysis tools and security settings tailored for malw…☆93Nov 4, 2023Updated 2 years ago
- init☆14Mar 16, 2020Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Download a Bunch of Malware for Demos and Testing☆13Sep 28, 2018Updated 7 years ago
- A program to steal user information through a simple link☆13May 19, 2023Updated 3 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆24Feb 20, 2019Updated 7 years ago
- "Never send a human to do a machine's job" - Open Source AI hacking agent☆78Updated this week
- ☆39Oct 29, 2020Updated 5 years ago
- Bootkits☆19Sep 13, 2023Updated 2 years ago
- Decompile an x86 exe, and read PE infos.☆19Sep 29, 2018Updated 7 years ago
- A LKM (Loadable Kernel Module) to execute a command as root; I include a example of using netcat and a compiled(with source and steps on…☆16Oct 8, 2024Updated last year
- Malware samples for analysis, researchers, anti-virus and system protection testing.(5000+ Malware-samples!)☆43Jul 30, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- RITlug website☆14Apr 23, 2026Updated last month
- A collection of malware samples caught by DIONAEA Honeypot☆13May 29, 2019Updated 7 years ago
- Windows x86 Hardware Breakpoint class for Windows >Vista☆23Aug 7, 2016Updated 9 years ago
- A MirrorDriver with SharedMemory useing EngMapFile☆23Apr 2, 2020Updated 6 years ago
- HTTP(S) directory/file brute forcer☆21Feb 22, 2023Updated 3 years ago
- Very tiny and selective implementation of STL for Windows NT kernel mode drivers☆18Jun 22, 2021Updated 4 years ago
- A Mirai type botnet called "Meerkat" very known in the community. Methods include basic TCP flags, L7, OVH, UDPRAW & UDP, XMAS, STD, & GR…☆23Aug 21, 2022Updated 3 years ago
- Fastly scans open ports on large networks and bruteforce login mechanism of found services☆12Aug 24, 2019Updated 6 years ago
- A proof-of-concept Node.js ransomware☆20Mar 27, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- This is a small script to make the local exploitation process easier. It downloads the precompiled exploit for x86 and x64 architectures …☆31Aug 30, 2017Updated 8 years ago
- A collection of malware that we use for testing and training☆12Nov 11, 2020Updated 5 years ago
- An example of PE hollowing injection technique☆26Jun 28, 2019Updated 6 years ago
- Syringe allows the injection of code from a DLL into a process it started.☆18Apr 19, 2026Updated last month
- Manual PE image mapper☆65Aug 29, 2013Updated 12 years ago
- ☆514Nov 21, 2020Updated 5 years ago
- Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x up to linux kernel 6.2 on x86_64, hides files, hides process, hide…☆39May 14, 2026Updated 3 weeks ago