0xd3xt3r / awesome-windows-rootkitsLinks
Collection of windows rootkits
☆26Updated 5 years ago
Alternatives and similar repositories for awesome-windows-rootkits
Users that are interested in awesome-windows-rootkits are comparing it to the libraries listed below
Sorting:
- A kernel rootkit with remote command and control interface for windows☆109Updated 7 years ago
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆65Updated 7 years ago
- Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware☆55Updated 3 weeks ago
- Gozi-MBR-rootkit Bootkit Modified☆70Updated 8 years ago
- NT AUTHORITY\SYSTEM☆38Updated 5 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆50Updated 4 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆93Updated 6 years ago
- PoC designed to evade userland-hooking anti-virus.☆90Updated 6 years ago
- Process Hollowing techniques as used in many file Crypters (C/C++)☆84Updated 4 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- ☆22Updated 5 years ago
- Code that can be used as a reference, library, or inspiration for hacking Windows memory.☆52Updated 5 years ago
- This repo contains all the code that will be referred at https://scriptdotsh.com by Paranoid Ninja☆46Updated 5 years ago
- Simple 32/64-bit PEs loader.☆139Updated 6 years ago
- A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers…☆69Updated 3 years ago
- Carberp Banking Trojan☆122Updated 10 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆76Updated 7 years ago
- ☆49Updated 5 years ago
- ☆90Updated 4 years ago
- ELF packer/crypter that aims to create hardened and stealthy troyans☆55Updated 3 years ago
- Windows Injection 101: from Zero to ROP (HITCON 2017)☆28Updated 8 years ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆84Updated 14 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆35Updated 6 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Rovnix Bootkit☆121Updated 10 years ago
- Anti-Debugging detection and obufuscation techniques that involved the use of Win32 API functions.☆34Updated 9 years ago
- Process Hollowing for 32 bit and 64 bit☆79Updated 7 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆73Updated 4 years ago
- Enumerate Windows Defender threat families and dump their names according category☆91Updated 6 years ago