Demonslay335 / CryptoTesterLinks
A utility for playing with cryptography, geared towards ransomware analysis.
☆309Updated 2 months ago
Alternatives and similar repositories for CryptoTester
Users that are interested in CryptoTester are comparing it to the libraries listed below
Sorting:
- Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.☆642Updated last year
- x64 Dynamic Reverse Engineering Toolkit☆707Updated 2 years ago
- Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls☆380Updated last year
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆567Updated 2 months ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆198Updated last month
- A small x64 library to load dll's into memory.☆448Updated last year
- Patching "signtool.exe" to accept expired certificates for code-signing.☆295Updated last year
- A dynamic unpacking tool☆141Updated 2 years ago
- Centralized resource for listing and organizing known injection techniques and POCs☆646Updated last month
- Advanced static analysis tool☆100Updated last week
- SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…☆466Updated 4 months ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆457Updated 2 years ago
- Now You See Me, Now You Don't☆986Updated last month
- PoCs for Kernelmode rootkit techniques research.☆409Updated last month
- Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…☆234Updated 11 months ago
- Signtool for expired certificates☆490Updated 2 years ago
- Important notes and topics on my journey towards mastering Windows Internals☆409Updated last year
- Cybersecurity research results. Simple C/C++ and Python implementations☆270Updated last week
- Shoggoth: Asmjit Based Polymorphic Encryptor☆753Updated last year
- PoC Implementation of a fully dynamic call stack spoofer☆842Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆165Updated last year
- ☆365Updated 4 months ago
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆287Updated last year
- Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.☆403Updated 2 years ago
- BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).☆402Updated last week
- C++ self-Injecting dropper based on various EDR evasion techniques.☆408Updated last year
- LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.☆315Updated last year
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆220Updated 2 years ago
- Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process☆278Updated last year
- Yet another variant of Process Hollowing☆420Updated 2 months ago