ArtemBaranov / WindowsRootkitsGuide
☆66Updated 2 months ago
Alternatives and similar repositories for WindowsRootkitsGuide:
Users that are interested in WindowsRootkitsGuide are comparing it to the libraries listed below
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆78Updated 7 months ago
- ☆105Updated 5 months ago
- Configuration Extractors for Malware☆97Updated 2 weeks ago
- ☆66Updated this week
- ☆113Updated 2 months ago
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆134Updated last year
- ☆186Updated last year
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 2 months ago
- ☆154Updated 4 months ago
- A Mythic Agent written in PIC C.☆186Updated 2 months ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆100Updated 2 months ago
- Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…☆53Updated 2 weeks ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 3 weeks ago
- "Service-less" driver loading☆151Updated 4 months ago
- kernel callback removal (Bypassing EDR Detections)☆161Updated last month
- Windows rootkit designed to work with BYOVD exploits☆183Updated 3 months ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Cheat sheet to detect and remove linux kernel rootkit☆55Updated 4 months ago
- ☆23Updated 2 months ago
- MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.☆113Updated 4 months ago
- ☆105Updated 9 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆141Updated 9 months ago
- ☆117Updated last year
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆198Updated 3 months ago
- ☆37Updated last year
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis☆52Updated 7 months ago
- Chiron Unpacker, developed by the Malwation MTR Team, is an Unpacker for Packers using the Assembly.Load function.☆19Updated 6 months ago
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆102Updated last month
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆68Updated this week