Maldev-Academy / DRMBinViaOrdinalImports
Create Anti-Copy DRM Malware
☆42Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for DRMBinViaOrdinalImports
- I have documented all of the AMSI patches that I learned till now☆68Updated last year
- ApexLdr is a DLL Payload Loader written in C☆104Updated 3 months ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆94Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆78Updated last year
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆149Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆145Updated 10 months ago
- Just another C2 Redirector using CloudFlare.☆78Updated 5 months ago
- Construct the payload at runtime using an array of offsets☆58Updated 4 months ago
- ☆91Updated 8 months ago
- Modified versions of the Cobalt Strike Process Injection Kit☆87Updated 9 months ago
- ☆116Updated 2 months ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆73Updated last month
- ☆83Updated 5 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆107Updated last month
- ☆73Updated last year
- Find DLLs with RWX section☆75Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆70Updated 3 weeks ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆47Updated 8 months ago
- Lateral Movement via the .NET Profiler☆73Updated 5 months ago
- Section-based payload obfuscation technique for x64☆58Updated 3 months ago
- ☆61Updated 9 months ago
- Winsocket for Cobalt Strike.☆98Updated last year
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated 9 months ago
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆113Updated last year
- ☆61Updated 2 years ago
- ☆118Updated last year
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆72Updated last year
- Do some DLL SideLoading magic☆74Updated last year
- ☆79Updated 5 months ago