ArtemBaranov / WindowsRootkitsGuideLinks
☆68Updated 6 months ago
Alternatives and similar repositories for WindowsRootkitsGuide
Users that are interested in WindowsRootkitsGuide are comparing it to the libraries listed below
Sorting:
- Vibe Malware Triage - MCP server for static PE analysis.☆68Updated 3 months ago
- ☆160Updated 5 months ago
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆134Updated last year
- ☆113Updated last month
- BSides Prishtina 2024 Malware Development and Persistence workshop☆94Updated 2 months ago
- The result of research and investigation of malware development tricks, techniques, evasion, cryptography and linux malware☆55Updated 5 months ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆37Updated 6 months ago
- ☆155Updated 2 months ago
- Lena's scripts/code/resources for malware analysis☆27Updated last year
- ☆152Updated 4 months ago
- Analyse MSI files for vulnerabilities☆138Updated 11 months ago
- Configuration Extractors for Malware☆111Updated 4 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆158Updated last year
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis☆65Updated 11 months ago
- Chiron Unpacker, developed by the Malwation MTR Team, is an Unpacker for Packers using the Assembly.Load function.☆21Updated 10 months ago
- ☆19Updated last week
- ☆108Updated 9 months ago
- Python tool to check rootkits in Windows kernel☆199Updated last week
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- ☆58Updated 4 months ago
- ☆37Updated 8 months ago
- Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C☆39Updated 5 years ago
- ☆24Updated 6 months ago
- ☆103Updated 9 months ago
- Collection of codes focused on Linux rootkits☆148Updated 2 weeks ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆91Updated 11 months ago
- ☆29Updated last year
- A Repository to Track Anti-Forensic Techniques☆111Updated 2 years ago
- ☆105Updated last year
- Tools for analyzing EDR agents☆241Updated last year