Alternatives and similar repositories for malware-practices

Users that are interested in malware-practices are comparing it to the libraries listed below

• Maldev-Academy / CodeSearchDemo
  ☆40Updated last year
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆122Updated 2 weeks ago
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆116Updated last year
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆91Updated 3 years ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆107Updated 2 years ago
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆64Updated 11 months ago
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• 0xHossam / APT-Attack-Simulation
  APT-Attack-Simulation simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persistence and privile…
  ☆62Updated last year
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated 2 years ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆70Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆118Updated 6 months ago
• assume-breach / Malware_Project
  ☆33Updated 2 years ago
• unkvolism / Fuck-Etw
  Bypass the Event Trace Windows(ETW) and unhook ntdll.
  ☆115Updated 2 years ago
• ZeroMemoryEx / Bypass-Sandbox-Evasion
  Bypass Malware Sandbox Evasion Ram check
  ☆141Updated 2 years ago
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• whokilleddb / injection-for-dummies
  A collection of PoCs for different injection techniques on Windows!
  ☆47Updated 2 years ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆76Updated last month
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 8 months ago
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆87Updated 2 years ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆85Updated 3 years ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆56Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated 2 years ago
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆30Updated 2 years ago
• hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypass
  CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
  ☆108Updated 2 years ago
• CyberSecurityUP / PhantomsGate
  PhantomsGate: Advanced Shellcode Injection Technique
  ☆25Updated last year
• tijme / conferences
  Some of the presentations, workshops, and labs I gave at public conferences.
  ☆34Updated last month
• xalicex / LOLDrivers_finder
  ☆89Updated 2 years ago
• 7h3w4lk3r / RexLdr
  Rex Shellcode Loader for AV/EDR evasion
  ☆34Updated last year