ArtemBaranov / WindowsRootkitsGuideLinks
☆70Updated 8 months ago
Alternatives and similar repositories for WindowsRootkitsGuide
Users that are interested in WindowsRootkitsGuide are comparing it to the libraries listed below
Sorting:
- The result of research and investigation of malware development tricks, techniques, evasion, cryptography and linux malware☆57Updated last month
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆136Updated last year
- ☆158Updated 3 months ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆38Updated 7 months ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆98Updated 4 months ago
- Analyse MSI files for vulnerabilities☆138Updated last year
- ☆160Updated 7 months ago
- ☆113Updated 2 months ago
- ☆153Updated 5 months ago
- Lena's scripts/code/resources for malware analysis☆26Updated last year
- Comprehensive Windows Syscall Extraction & Analysis Framework☆129Updated last month
- ☆105Updated last year
- Python tool to check rootkits in Windows kernel☆201Updated last month
- ☆108Updated 11 months ago
- Vibe Malware Triage - MCP server for static PE analysis.☆70Updated 4 months ago
- ☆121Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆163Updated last year
- ☆25Updated 6 months ago
- Cheat sheet to detect and remove linux kernel rootkit☆73Updated 9 months ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- ☆38Updated 9 months ago
- Obex – Blocking unwanted DLLs in user mode☆123Updated 2 weeks ago
- ☆19Updated last month
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis☆66Updated last year
- Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C☆39Updated 5 years ago
- SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…☆211Updated last week
- Tools for analyzing EDR agents☆264Updated last year
- Collection of codes focused on Linux rootkits☆167Updated 2 weeks ago
- Chiron Unpacker, developed by the Malwation MTR Team, is an Unpacker for Packers using the Assembly.Load function.☆23Updated 11 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆47Updated last year