Fadi002 / MalwareInvestigationLinks
reverse engineering random malwares
☆22Updated 8 months ago
Alternatives and similar repositories for MalwareInvestigation
Users that are interested in MalwareInvestigation are comparing it to the libraries listed below
Sorting:
- C# API for Nidhogg rootkit☆19Updated last year
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆46Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆50Updated last year
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated 2 years ago
- Change hash for a signed pe☆16Updated 2 years ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆72Updated last year
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Updated 2 years ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆66Updated 2 years ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆29Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆66Updated last year
- This program is used to perform reflective DLL Injection to a remote process specified by the user.☆65Updated 2 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆106Updated 2 years ago
- 「⚙️」Detect which native Windows API's (NtAPI) are being hooked☆38Updated 10 months ago
- Playing with packets in C#☆15Updated last year
- Reports on Driver, LSASS and other security services mitigations☆30Updated last month
- Demoting PPL anti-malware services to less than a guest user☆62Updated 8 months ago
- Persistence via Shell Extensions☆62Updated 2 years ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆24Updated 5 months ago
- BYOVD Technique Example using viragt64 driver☆55Updated last year
- Research into removing strings & API call references at compile-time (Anti-Analysis)☆27Updated last year
- ☆11Updated 2 years ago
- API Hammering with C++20☆49Updated 3 years ago
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆17Updated 8 months ago
- ☆26Updated 11 months ago
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆42Updated 2 years ago
- Ransomware written in go, encrypt - decrypt.☆29Updated 5 months ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆50Updated last year
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆73Updated last year
- MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit☆42Updated last year