KooroshRZ / Evader
Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)
☆104Updated 4 years ago
Alternatives and similar repositories for Evader
Users that are interested in Evader are comparing it to the libraries listed below
Sorting:
- NINA: No Injection, No Allocation x64 Process Injection Technique☆225Updated 4 years ago
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆64Updated 7 years ago
- A kernel-mode rootkit with remote control☆213Updated 4 years ago
- A kernel rootkit with remote command and control interface for windows☆108Updated 7 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆202Updated 3 years ago
- A PoC designed to bypass all usermode hooks in a WoW64 environment.☆150Updated 4 years ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆109Updated last year
- Reflective PE loader for DLL injection☆174Updated 7 years ago
- PoC designed to evade userland-hooking anti-virus.☆88Updated 5 years ago
- Manual DLL Injector using Thread Hijacking.☆238Updated 7 years ago
- A more stealthy variant of "DLL hollowing"☆348Updated last year
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆332Updated 2 years ago
- Research on Anti-malware and other related security solutions☆259Updated 4 years ago
- A Simple AES Command Line Crypter☆36Updated 2 years ago
- A tool for injecting 64-bit executables into legitimate processes. Users can specify a local file or download one from a URL, with all op…☆202Updated 6 months ago
- Packer compressing .net assemblies, (ab)using the PE format for data storage☆174Updated 2 years ago
- An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.☆305Updated 6 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 3 years ago
- Process Hollowing for 32 bit and 64 bit☆79Updated 7 years ago
- A quick-and-dirty anti-hook library proof of concept.☆103Updated 6 years ago
- Various Process Injection Techniques☆148Updated 2 years ago
- Executes 64bit code from a 32bit process☆229Updated 7 years ago
- Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes on…☆56Updated 7 months ago
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆193Updated 8 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆178Updated 3 weeks ago
- Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used …☆143Updated 2 years ago
- A simple Windows kernel rootkit.☆93Updated last year
- Easy XOR string encryption for NET based binaries☆138Updated last year
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆213Updated 2 years ago
- Inject code into a legitimate process☆143Updated 10 years ago