Alternatives and similar repositories for BehavEye

Users that are interested in BehavEye are comparing it to the libraries listed below

• EvilBytecode / EByte-Ransomware
  Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.
  ☆46Updated 9 months ago
• KingKDot / Exorcism
  The first open source runtime windows batch and command line deobfuscator
  ☆42Updated 5 months ago
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆119Updated 6 months ago
• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆29Updated 9 months ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆62Updated 6 months ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆63Updated 3 years ago
• woldann / NThread
  Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…
  ☆59Updated 3 months ago
• lsecqt / BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero
  ☆44Updated last year
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆108Updated 3 years ago
• MalwareTech / HiddenDesktop
  Create and enumerate hidden desktops.
  ☆88Updated 2 years ago
• moom825 / XenoStealer
  ☆52Updated last year
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 3 years ago
• buzzer-re / Shinigami
  A dynamic unpacking tool
  ☆145Updated 2 years ago
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆108Updated 3 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆44Updated last year
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆56Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆90Updated 9 months ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆58Updated 2 years ago
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆30Updated 6 years ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆26Updated 9 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆108Updated 2 years ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆44Updated 2 years ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆66Updated 2 years ago
• FourCoreLabs / TrustedInstallerPOC
  A simple go Proof of Concept to start a new shell as TrustedInstaller
  ☆63Updated 2 years ago
• 0xTriboulet / T-1
  T-1 is a shellcode loader that leverages ML techniques to detect VM environments
  ☆34Updated last year
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆68Updated last year
• Idov31 / rustomware
  Simple ransomware written in Rust. Part of the building a rustomware blog post.
  ☆35Updated 2 years ago
• IntelBroker / Endurance-Wiper
  a small wiper malware programmed in c#
  ☆59Updated 3 years ago