AdvDebug / BehavEyeLinks
Advanced dynamic malware analysis tool.
☆84Updated last year
Alternatives and similar repositories for BehavEye
Users that are interested in BehavEye are comparing it to the libraries listed below
Sorting:
- Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.☆39Updated 3 months ago
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆73Updated last year
- The best powershell obfuscator ever made☆109Updated last week
- Nim process hollowing loader☆59Updated 2 weeks ago
- simple user-mode Rootkit☆104Updated 2 years ago
- A dynamic unpacking tool☆137Updated last year
- Create and enumerate hidden desktops.☆90Updated last year
- Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…☆55Updated 4 months ago
- a small wiper malware programmed in c#☆59Updated 2 years ago
- A simple go Proof of Concept to start a new shell as TrustedInstaller☆58Updated last year
- LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis☆78Updated 5 months ago
- using the gpu to hide your payload☆59Updated 2 years ago
- Ransomware written in go, encrypt - decrypt.☆26Updated 3 months ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆30Updated 5 years ago
- A privilege escalation vulnerability exists in Windows due to a flaw in the implementation of the Atom Table. An attacker could exploit t…☆28Updated 10 months ago
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆57Updated last year
- PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record☆42Updated last year
- ☆38Updated last year
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆135Updated last year
- LKM rootkit for modern kernels, with DNS C2 and a simple web interface☆72Updated 3 weeks ago
- Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust☆63Updated last year
- Windows syscall SDK with dynamic offset resolution, validation, obfuscation, and multi language bindings. Bypass API hooks across differe…☆37Updated this week
- Red Team Operation's Defense Evasion Technique.☆54Updated last year
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- ☆38Updated last year
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆42Updated 10 months ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- A Bumblebee-inspired Crypter☆79Updated 2 years ago
- A command and control framework.☆52Updated 7 months ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆88Updated 2 months ago