MandConsultingGroup / ring3-kitLinks
Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)
☆76Updated 2 years ago
Alternatives and similar repositories for ring3-kit
Users that are interested in ring3-kit are comparing it to the libraries listed below
Sorting:
- PoC Thread Execution Hijacking for Win32 Code Injection☆176Updated 9 months ago
- A Simple AES Command Line Crypter☆36Updated 2 years ago
- Small attempt at a decent Import Address Table (IAT) Dumper☆15Updated 9 months ago
- Zero-Day Code Injection and Persistence Technique☆33Updated 8 years ago
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆64Updated 7 years ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆10Updated last year
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 4 years ago
- XssBot-Модульный резидентный бот с супер админкой☆11Updated 2 years ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆27Updated 5 years ago
- Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on M…☆11Updated 5 years ago
- POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files☆54Updated last year
- Well, I have created this shit for educational pruposes (I think)☆36Updated 2 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆43Updated 8 months ago
- A tool that reads a PE file from a byte array buffer and injects it into memory.☆27Updated 5 years ago
- C++ Multi-Stage Semi-Polymorphic Malware Loader.☆9Updated 3 years ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆110Updated last year
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- Overwrite MBR and add own custom message☆17Updated 5 years ago
- NT AUTHORITY\SYSTEM☆39Updated 4 years ago
- Malware AV evasion via disable Windows Defender (Registry). C++☆35Updated 3 years ago
- Various Process Injection Techniques☆148Updated 2 years ago
- A simple Windows kernel rootkit.☆92Updated 3 weeks ago
- ☆13Updated 4 years ago
- Hellokitty Ransomware Source Code☆15Updated last year
- PoC designed to evade userland-hooking anti-virus.☆88Updated 6 years ago
- Simple Packer PE File☆15Updated 6 years ago
- Baseline/Test for persistence in common Windows Registry locations☆24Updated 6 years ago
- Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)☆104Updated 4 years ago
- Public open-source code of malware NetTraveler (aka TravNet).☆39Updated 10 years ago
- Software Protector☆19Updated 4 years ago