Alternatives and similar repositories for malware-practices

Users that are interested in malware-practices are comparing it to the libraries listed below

• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆121Updated 10 months ago
• ZeroMemoryEx / Bypass-Sandbox-Evasion
  Bypass Malware Sandbox Evasion Ram check
  ☆138Updated 2 years ago
• Maldev-Academy / CodeSearchDemo
  ☆40Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆98Updated 4 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆66Updated last year
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆106Updated 2 years ago
• ghostpepper108 / Evasion
  ☆108Updated 2 years ago
• lem0nSec / KBlast
  Basic interactive Windows kernel offensive toolkit written in C
  ☆131Updated 2 weeks ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆84Updated 3 years ago
• unkvolism / Fuck-Etw
  Bypass the Event Trace Windows(ETW) and unhook ntdll.
  ☆113Updated 2 years ago
• d1rkmtrr / IP-Hunter
  Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process
  ☆71Updated last year
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated 2 years ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated 2 years ago
• hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypass
  CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
  ☆108Updated 2 years ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆146Updated last year
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆115Updated last year
• hdks-bug / hermit
  A command and control framework.
  ☆55Updated 9 months ago
• Kudaes / RustChain
  Hide memory artifacts using ROP and hardware breakpoints.
  ☆147Updated last year
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆87Updated 2 years ago
• 0xHossam / APT-Attack-Simulation
  APT-Attack-Simulation simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persistence and privile…
  ☆61Updated last year
• decoder-it / TokenStealer
  ☆163Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆163Updated 10 months ago
• sensepost / mydumbedr
  ☆120Updated last year
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆55Updated last year
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆115Updated 2 years ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆88Updated 3 years ago
• CyberSecurityUP / PhantomsGate
  PhantomsGate: Advanced Shellcode Injection Technique
  ☆25Updated last year
• d1rkmtrr / PSpersist
  Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…
  ☆84Updated 2 years ago
• d1rkmtrr / PE-Obfuscator
  PE obfuscator with Evasion in mind
  ☆213Updated 2 years ago