Jokas-null / Windows_RootKitLinks
A windows kernel-mode rootkit with remote control
☆12Updated 2 years ago
Alternatives and similar repositories for Windows_RootKit
Users that are interested in Windows_RootKit are comparing it to the libraries listed below
Sorting:
- Malware persistence via COM DLL hijacking. C++ implementation example☆13Updated 3 years ago
- Hooking Heavens Gate in a weekend☆13Updated 3 years ago
- Classic DLL injection. Download dll from url and inject. Simple C++ implementation☆10Updated 3 years ago
- using the Recycle Bin to insure persistence☆12Updated 2 years ago
- 💻 Windows 10 Kernel-mode rootkit☆31Updated 2 years ago
- Basic disassembly technique to slow down disasm process☆11Updated 5 years ago
- With this RunPE you can easily inject your payload in any x86 or x64 program.☆14Updated 6 years ago
- Process injection via KernelCallbackTable☆14Updated 3 years ago
- Run shellcode via EnumDesktopsA. C++ implementation☆13Updated 3 years ago
- Utilizing Alternative Shellcode Execution Via Callbacks☆13Updated last year
- A dropper that decrypts encrypted xor payload and can inject it in explorer.exe proccess☆9Updated 3 years ago
- A proof of concept of real custom GetProcAddress and GetModuleBaseAddress☆20Updated 2 years ago
- Listing UDP connections with remote address without sniffing.☆29Updated last year
- Overwrite MBR and add own custom message☆17Updated 5 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- A very weird RAT☆19Updated 2 years ago
- An attempt at reversing WindowsDefender☆20Updated 8 months ago
- Example of C# heap injector for x64 and x86 shellcodes☆14Updated 2 years ago
- Former UEFI Firmware Rootkit Replicating MoonBounce / ESPECTRE☆10Updated 3 years ago
- Loader and RunPE file executer☆17Updated 6 years ago
- Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example☆17Updated 3 years ago
- DarkRats Standalone HVNC☆24Updated 3 years ago
- A simple PE loader.☆26Updated 2 years ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆21Updated 2 months ago
- Simple keylogger written in C# which is ready for modifications.☆14Updated 3 years ago
- Phantom DLL Hollowing method implemented in modmap☆17Updated 4 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆19Updated 2 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆30Updated 10 months ago
- Crypter thingy I made for avoiding automated anti-malware environments. This is to be used for EDUCATIONAL PURPOSES ONLY.☆12Updated 5 years ago