K2 / ADMMutate
Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I…
☆89Updated last year
Alternatives and similar repositories for ADMMutate:
Users that are interested in ADMMutate are comparing it to the libraries listed below
- kernel exploitation helper class☆77Updated 8 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆93Updated 3 years ago
- Exploiting MS15-061 local Privilege escalation☆50Updated 9 years ago
- Python script to inject and run shellcodes through TLS callbacks☆50Updated 9 years ago
- heaper, an advanced heap analysis plugin for Immunity Debugger☆97Updated 12 years ago
- ViDi Visual Disassembler (experimental)☆76Updated 2 years ago
- Supporting Files on my analysis of the malware designated hdroot.☆59Updated 8 years ago
- Set of my small utils related to cryptography, encoding, decoding etc☆87Updated last year
- A Python tool to generate ROP chains☆63Updated 3 months ago
- ☆115Updated 8 years ago
- Cminer is a tool for enumerating the code caves in PE files.☆149Updated 2 years ago
- Zerokit/GAPZ rootkit (non buildable and only for researching)☆182Updated 6 years ago
- C++-based shellcode builder☆112Updated 4 years ago
- Bootkits Revisited☆41Updated 10 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆116Updated 6 years ago
- Example code from "Programming Linux Anti-Reversing Techniques"☆97Updated 8 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆116Updated 8 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆123Updated 6 years ago
- Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.☆131Updated 11 years ago
- A CrackMe powered with a virtual machine.☆44Updated 10 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆215Updated 4 years ago
- HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass☆62Updated 7 years ago
- ☆69Updated 3 years ago
- Collection Of Anti-Debugging Tricks☆99Updated 9 years ago
- Reflective Polymorphism☆104Updated 6 years ago
- KINS Banking Trojan☆62Updated 10 years ago
- Another Repo of Malware. Enjoy. <3☆59Updated 6 years ago
- Passive UAC elevation using dll infection☆73Updated 10 years ago
- Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit☆100Updated 6 years ago