Alternatives and similar repositories for malware-practices

Users that are interested in malware-practices are comparing it to the libraries listed below

• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆123Updated 2 months ago
• efchatz / bypassing-av-detection
  Bypassing antivirus detection: old-school malware, new tricks
  ☆67Updated 2 years ago
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆116Updated last year
• SaadAhla / IP-Hunter
  Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process
  ☆75Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆124Updated 3 weeks ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆71Updated last year
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆110Updated 2 years ago
• Maldev-Academy / CodeSearchDemo
  ☆41Updated last year
• 0xHossam / APT-Attack-Simulation
  Projected developed for fun only that simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persist…
  ☆62Updated last year
• ZeroMemoryEx / Bypass-Sandbox-Evasion
  Bypass Malware Sandbox Evasion Ram check
  ☆141Updated 3 years ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆56Updated last year
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆108Updated 2 years ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 10 months ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆91Updated 3 years ago
• jakabakos / CVE-2023-36884-MS-Office-HTML-RCE
  MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit
  ☆41Updated 2 years ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆86Updated 4 years ago
• unkvolism / Fuck-Etw
  Bypass the Event Trace Windows(ETW) and unhook ntdll.
  ☆115Updated 2 years ago
• sensepost / mydumbedr
  ☆120Updated 2 years ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 6 months ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated 2 years ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆165Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Updated 2 years ago
• MultSec / MultCheck
  Identifies bad bytes from static analysis with any Anti-Virus scanner.
  ☆128Updated last year
• dmcxblue / calc_poc
  A repository holding Proof of Concepts for executing the calculator application via different file formats
  ☆42Updated last year
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆75Updated 2 months ago
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆97Updated last year
• georgesotiriadis / MalwareDev
  ☆85Updated 3 years ago
• xalicex / LOLDrivers_finder
  ☆89Updated 2 years ago