KooroshRZ / EvaderLinks
Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)
☆104Updated 4 years ago
Alternatives and similar repositories for Evader
Users that are interested in Evader are comparing it to the libraries listed below
Sorting:
- NINA: No Injection, No Allocation x64 Process Injection Technique☆225Updated 4 years ago
- A Simple AES Command Line Crypter☆36Updated 2 years ago
- A more stealthy variant of "DLL hollowing"☆347Updated last year
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆64Updated 7 years ago
- A kernel-mode rootkit with remote control☆213Updated 4 years ago
- Packer compressing .net assemblies, (ab)using the PE format for data storage☆174Updated 2 years ago
- Executes 64bit code from a 32bit process☆231Updated 7 years ago
- A PoC designed to bypass all usermode hooks in a WoW64 environment.☆150Updated 4 years ago
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆194Updated 8 years ago
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆335Updated 2 years ago
- Manual DLL Injector using Thread Hijacking.☆238Updated 7 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆235Updated 5 years ago
- An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.☆305Updated 6 years ago
- A PE (Portable Executable) packer with Huffman Compression and Xor encryption.☆60Updated 3 years ago
- Hide malware behind a legit process C#☆120Updated 5 years ago
- A kernel rootkit with remote command and control interface for windows☆109Updated 7 years ago
- Set of antianalysis techniques found in malware☆132Updated last year
- A tool for injecting 64-bit executables into legitimate processes. Users can specify a local file or download one from a URL, with all op…☆204Updated 7 months ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆268Updated 2 years ago
- Research on Anti-malware and other related security solutions☆259Updated 4 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆178Updated last month
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 4 years ago
- Process Hollowing for 32 bit and 64 bit☆79Updated 7 years ago
- vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.☆92Updated 4 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆35Updated 6 years ago
- PoC designed to evade userland-hooking anti-virus.☆88Updated 6 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆201Updated 4 years ago
- Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes on…☆56Updated 2 weeks ago
- Asynchronous Procedure Calls☆230Updated 4 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆224Updated 2 years ago