EgeBalci / WSAAcceptBackdoor
Winsock accept() Backdoor Implant.
☆110Updated 3 years ago
Related projects: ⓘ
- Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.☆70Updated 3 years ago
- Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.☆80Updated 2 years ago
- Evasive Process Hollowing Techniques☆132Updated 4 years ago
- A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn☆100Updated last year
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆65Updated 2 years ago
- Userland API Unhooker Project☆104Updated 3 years ago
- Shellcode injector using direct syscalls☆116Updated 4 years ago
- Windows user-land hooks manipulation tool.☆139Updated 3 years ago
- Project to check which Nt/Zw functions your local EDR is hooking☆179Updated 3 years ago
- ☆131Updated last year
- A small project to bypass UAC in windows 10/8/7 using dll injection technique☆73Updated 4 years ago
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆100Updated last year
- AmsiScanBufferBypass using D/Invoke☆128Updated 3 years ago
- ☆55Updated this week
- PoC MSVC COFF Object file loader/injector.☆165Updated 3 years ago
- A curated list of awesome Windows Exploitation resources, and shiny things.☆68Updated 7 years ago
- Experiment on reproducing Obfuscate & Sleep☆136Updated 3 years ago
- Beacon Object File (BOF) for remote process injection via thread hijacking☆186Updated 3 years ago
- ☆146Updated this week
- Bypassing NTFS permissions to read any files as unprivileged user.☆187Updated 3 years ago
- ☆102Updated this week
- Example code for EDR bypassing☆149Updated 5 years ago
- Detect strange memory regions and DLLs☆166Updated 2 years ago
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆213Updated last year
- Red Team Operator: Malware Development Essentials Course☆92Updated 4 years ago
- ☆99Updated this week
- EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and e…☆263Updated last year
- ☆177Updated this week
- WTSRM☆198Updated 2 years ago