MalwareApiLib / MalwareApiLibraryLinks
collection of apis used in malware development
☆224Updated 2 years ago
Alternatives and similar repositories for MalwareApiLibrary
Users that are interested in MalwareApiLibrary are comparing it to the libraries listed below
Sorting:
- Performing Indirect Clean Syscalls☆558Updated 2 years ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆379Updated 10 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆480Updated last year
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆641Updated 2 years ago
- ☆356Updated last year
- ☆133Updated last year
- My collection of malware dev links☆275Updated 2 weeks ago
- A Payload Loader Designed With Advanced Evasion Features☆512Updated 2 years ago
- A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementin…☆522Updated 2 years ago
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆447Updated 2 years ago
- WTSRM☆212Updated 2 years ago
- Payload Loader With Evasion Features☆318Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆688Updated 3 months ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆298Updated last year
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆308Updated 10 months ago
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆229Updated 6 months ago
- Aims to identify sleeping beacons☆604Updated 6 months ago
- miscellaneous scripts and programs☆245Updated 5 months ago
- Analyse your malware to surgically obfuscate it☆474Updated 3 weeks ago
- Various ways to execute shellcode☆491Updated last year
- KaynLdr is a Reflective Loader written in C/ASM☆540Updated last year
- Conti Locker source code☆194Updated 3 years ago
- ☆485Updated 2 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆331Updated 11 months ago
- ☆326Updated 2 years ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆205Updated 2 years ago
- Lifetime AMSI bypass☆629Updated last year
- This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and down…☆247Updated 2 years ago
- TartarusGate, Bypassing EDRs☆592Updated 3 years ago
- Leaked Windows processes handles identification tool☆288Updated 3 years ago