Golang library for malware development
☆387Nov 20, 2024Updated last year
Alternatives and similar repositories for maldev
Users that are interested in maldev are comparing it to the libraries listed below
Sorting:
- Shellcode loader generator with multiples features☆508Dec 31, 2024Updated last year
- Golang weaponization for red teamers.☆518Jan 17, 2024Updated 2 years ago
- Go shellcode loader that combines multiple evasion techniques☆388Jun 21, 2023Updated 2 years ago
- indirect syscalls for AV/EDR evasion in Go assembly☆379Jun 13, 2023Updated 2 years ago
- Go implementation of the self-deletion of an running executable from disk☆113Jun 6, 2023Updated 2 years ago
- Repo for malware development practices I post on my blog☆35Oct 5, 2024Updated last year
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆762Jan 26, 2025Updated last year
- Golang malware development library☆977Dec 13, 2024Updated last year
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆1,044Jun 20, 2023Updated 2 years ago
- Terminate AV/EDR Processes using kernel driver☆352Jun 12, 2023Updated 2 years ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆262Jun 29, 2024Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,198Oct 16, 2023Updated 2 years ago
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆722Aug 18, 2023Updated 2 years ago
- Execute unmanaged Windows executables in CobaltStrike Beacons☆714Mar 4, 2023Updated 3 years ago
- A modern 32/64-bit position independent implant template☆1,306Mar 21, 2025Updated 11 months ago
- Callback Function Loader Implemented in Go☆140Mar 26, 2024Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆787Jan 26, 2026Updated last month
- Because AV evasion should be easy.☆862Nov 28, 2024Updated last year
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆527Oct 12, 2022Updated 3 years ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆284Jun 15, 2024Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆283Sep 18, 2024Updated last year
- PE obfuscator with Evasion in mind☆213Apr 25, 2023Updated 2 years ago
- Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote m…☆173Apr 27, 2023Updated 2 years ago
- Awesome EDR Bypass Resources For Ethical Hacking☆1,495Jan 26, 2026Updated last month
- Syscall Shellcode Loader (Work in Progress)☆1,259May 8, 2024Updated last year
- RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.☆1,562Aug 20, 2024Updated last year
- Indirect syscalls + DInvoke made simple.☆95Dec 24, 2024Updated last year
- Collection of various malicious functionality to aid in malware development☆1,854Feb 28, 2024Updated 2 years ago
- Now You See Me, Now You Don't☆1,028Jan 23, 2026Updated last month
- Performing Indirect Clean Syscalls☆605Apr 19, 2023Updated 2 years ago
- C++ self-Injecting dropper based on various EDR evasion techniques.☆426Feb 11, 2024Updated 2 years ago
- .NET assembly loader with patchless AMSI and ETW bypass☆374Apr 19, 2023Updated 2 years ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆611Feb 21, 2024Updated 2 years ago
- CobaltStrike beacon in rust☆208Aug 10, 2024Updated last year
- A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…☆1,173Feb 25, 2023Updated 3 years ago
- A workshop about Malware Development☆1,771Jun 2, 2023Updated 2 years ago
- PoC Implementation of a fully dynamic call stack spoofer☆926Jul 20, 2024Updated last year
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆407Sep 12, 2023Updated 2 years ago
- Real fucking shellcode encryptor & obfuscator tool☆1,012Jan 7, 2026Updated 2 months ago