☆117Aug 9, 2016Updated 9 years ago
Alternatives and similar repositories for malWASH
Users that are interested in malWASH are comparing it to the libraries listed below
Sorting:
- Class implementation of PowerLoader injection technique☆32Dec 23, 2016Updated 9 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆36Jan 22, 2021Updated 5 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Sep 12, 2016Updated 9 years ago
- User-mode hook bypassing method☆33Aug 26, 2016Updated 9 years ago
- This is a fuzzer for Windows SEH buffer overflow.☆15Oct 17, 2017Updated 8 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆157Jun 10, 2019Updated 6 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆382Apr 17, 2017Updated 8 years ago
- Some interesting code☆18Jan 16, 2015Updated 11 years ago
- Reflective PE loader for DLL injection☆187Oct 12, 2017Updated 8 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆341Jul 30, 2017Updated 8 years ago
- ☆22Jul 7, 2017Updated 8 years ago
- ☆11Mar 11, 2015Updated 11 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆293Jun 27, 2017Updated 8 years ago
- Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis☆65Sep 15, 2015Updated 10 years ago
- Phantom DLL hollowing PoC☆372May 23, 2022Updated 3 years ago
- A more stealthy variant of "DLL hollowing"☆363Mar 8, 2024Updated 2 years ago
- Headers for linking your software with ntdll.dll☆15Nov 4, 2020Updated 5 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- hooking KiUserApcDispatcher☆27Apr 3, 2017Updated 8 years ago
- ☆30May 23, 2017Updated 8 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆109May 27, 2021Updated 4 years ago
- Dll Convert to Shellcode.☆41Jul 4, 2022Updated 3 years ago
- Research on Anti-malware and other related security solutions☆265Jul 25, 2020Updated 5 years ago
- Simple code to resolve library functions at runtime☆10Jan 5, 2015Updated 11 years ago
- metame is a metamorphic code engine for arbitrary executables☆599Oct 6, 2019Updated 6 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆74Apr 11, 2022Updated 3 years ago
- Process Doppelgänging☆162Dec 19, 2017Updated 8 years ago
- PoC for hiding PE exports☆67Dec 19, 2020Updated 5 years ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- ☆19Dec 19, 2019Updated 6 years ago
- Antivirus Emulator Fingerprints☆30Oct 12, 2018Updated 7 years ago
- ☆10Aug 16, 2019Updated 6 years ago
- A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.☆17Jul 2, 2021Updated 4 years ago
- The educational Animus malware☆18Sep 25, 2019Updated 6 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆41Dec 31, 2020Updated 5 years ago
- IDApro idc and idapython script collection☆28Aug 22, 2023Updated 2 years ago
- ☆28Feb 13, 2017Updated 9 years ago
- A tool to detect and crash Cuckoo Sandbox☆297Jul 22, 2024Updated last year
- collection of scripts and stuff☆12Aug 15, 2016Updated 9 years ago