CodeXTF2 / maldev-links
My collection of malware dev links
☆260Updated 6 months ago
Alternatives and similar repositories for maldev-links:
Users that are interested in maldev-links are comparing it to the libraries listed below
- ☆342Updated last year
- Performing Indirect Clean Syscalls☆521Updated last year
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆374Updated 7 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆655Updated last week
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆423Updated last year
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆307Updated 7 months ago
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆365Updated last year
- AV/EDR Lab environment setup references to help in Malware development☆369Updated last month
- Analyse your malware to surgically obfuscate it☆456Updated 3 weeks ago
- Protected Process Dumper Tool☆533Updated last year
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆367Updated 3 months ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆255Updated 9 months ago
- Open Source C&C Specification☆241Updated 3 weeks ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆368Updated 5 months ago
- Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.☆241Updated 5 months ago
- ☆254Updated last year
- TartarusGate, Bypassing EDRs☆570Updated 3 years ago
- shellcode loader for your evasion needs☆317Updated 4 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆473Updated last year
- Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.☆391Updated last year
- Simulate the behavior of AV/EDR for malware development training.☆514Updated last year
- Kill AV/EDR leveraging BYOVD attack☆344Updated last year
- Collection of UAC Bypass Techniques Weaponized as BOFs☆487Updated last year
- Amsi Bypass payload that works on Windwos 11☆376Updated last year
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆180Updated 6 months ago
- Lifetime AMSI bypass☆618Updated last year
- Various ways to execute shellcode☆487Updated last year
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆261Updated last week
- This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp…☆412Updated last year
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆956Updated last year