PacktPublishing/Windows-APT-Warfare external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PacktPublishing/Windows-APT-Warfare

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PacktPublishing/Windows-APT-Warfare)

Close

PacktPublishing / Windows-APT-WarfareView on GitHubMore

• External links
• Readme badge

Windows APT Warfare, published by Packt

☆75Mar 11, 2023Updated 3 years ago

Alternatives and similar repositories for Windows-APT-Warfare

Users that are interested in Windows-APT-Warfare are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• kasif-dekel / OSR_DeviceTree_Vuln

  View on GitHub
  ☆13Jan 12, 2022Updated 4 years ago
• Meowoverflow / Rootkits_Subverting_the_Windows_Kernel

  View on GitHub
  source code for the examples and topics from the book
  ☆10Mar 11, 2019Updated 7 years ago
• Ben-Lichtman / reloader

  View on GitHub
  Reflective DLL self-loading as a library
  ☆21May 3, 2025Updated 10 months ago
• matterpreter / cpuid

  View on GitHub
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆27Sep 15, 2023Updated 2 years ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools

  View on GitHub
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Jul 7, 2022Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• Bond-o / vnum

  View on GitHub
  Cisco CallManager User Enumeration
  ☆15Aug 16, 2022Updated 3 years ago
• waawaa / Hooked-Injector

  View on GitHub
  Hooked create process injection for meterpreter
  ☆23Jun 16, 2021Updated 4 years ago
• 0xsp-SRD / PAS-mini-c2c-

  View on GitHub
  ☆12Oct 9, 2022Updated 3 years ago
• freqyXin / Offensive-Wireless-Security

  View on GitHub
  Slide deck for DEF CON 30 - Read Team Village - Offensive Wireless Security presentation
  ☆13Aug 16, 2022Updated 3 years ago
• alal4465 / HeavensGateHook

  View on GitHub
  Hooking Heavens Gate in a weekend
  ☆13Jan 1, 2022Updated 4 years ago
• jayesther / KTM_POCS

  View on GitHub
  Reports and POCs for CVE 2024-43570 and CVE-2024-43535
  ☆30Jun 7, 2025Updated 9 months ago
• trustedsec / LLVM-Obfuscation-Experiments

  View on GitHub
  ☆17May 22, 2024Updated last year
• tandasat / Hypervisors-for-Hackers

  View on GitHub
  The materials of the "Hypervisors for Hackers: Security from the Hardware Up" class held at Global Cybersecurity Camp 2026 Vietnam.
  ☆55Mar 4, 2026Updated 3 weeks ago
• threatexpress / redteamguide

  View on GitHub
  Home of https://redteam.guide
  ☆15Updated this week
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• alfarom256 / MinifilterResearch

  View on GitHub
  ☆17Oct 31, 2022Updated 3 years ago
• akapv / atomic-red-team

  View on GitHub
  ☆34May 14, 2018Updated 7 years ago
• CodeXTF2 / WindowSpy

  View on GitHub
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆282Feb 24, 2025Updated last year
• octopwn / wsnet-dotnet

  View on GitHub
  ☆12Feb 19, 2026Updated last month
• omair2084 / msmq_re

  View on GitHub
  ☆24Apr 30, 2023Updated 2 years ago
• connormcgarr / SkBridge

  View on GitHub
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆77Sep 8, 2025Updated 6 months ago
• rtfmkiesel / loldrivers-client

  View on GitHub
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆95Dec 2, 2025Updated 3 months ago
• therealdreg / auxlib

  View on GitHub
  Full reversing of the Microsoft Auxiliary Windows API Library and ported to C
  ☆24Dec 17, 2024Updated last year
• waldo-irc / YouMayPasser

  View on GitHub
  You shall pass
  ☆270Jul 16, 2022Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• adrianyy / nasm_shellcode

  View on GitHub
  NASM listing to shellcode converter
  ☆14May 6, 2018Updated 7 years ago
• therealdreg / cgaty

  View on GitHub
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Aug 11, 2023Updated 2 years ago
• Yaxser / COFFLoader2

  View on GitHub
  Load and execute COFF files and Cobalt Strike BOFs in-memory
  ☆226Sep 13, 2022Updated 3 years ago
• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆25Jan 31, 2026Updated last month
• susMdT / fictional-invention

  View on GitHub
  idk man this was the default github name
  ☆35Apr 23, 2023Updated 2 years ago
• petikvx / vx-ezine

  View on GitHub
  Collection of ezine about virii
  ☆17Sep 13, 2022Updated 3 years ago
• waleedassar / ALPC_CLIENT_SERVER

  View on GitHub
  Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.
  ☆21Jan 25, 2022Updated 4 years ago
• 0x4143 / adversaryemulation-gems

  View on GitHub
  A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers
  ☆16Jul 19, 2022Updated 3 years ago
• maliciousgroup / RDI-SRDI

  View on GitHub
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆87Apr 11, 2023Updated 2 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• therealdreg / windbgtocstruct

  View on GitHub
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Aug 11, 2023Updated 2 years ago
• deepinstinct / Dirty-Vanity

  View on GitHub
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆674Dec 23, 2022Updated 3 years ago
• B0fH / yara-suricata

  View on GitHub
  A Yara Lua output script for Suricata
  ☆20Apr 7, 2019Updated 6 years ago
• t94j0 / sddl_py

  View on GitHub
  Parse SDDL strings
  ☆37Apr 1, 2024Updated last year
• Helixo32 / CrimsonEDR

  View on GitHub
  Simulate the behavior of AV/EDR for malware development training.
  ☆565Feb 15, 2024Updated 2 years ago
• ZeroMemoryEx / Chaos-Rootkit

  View on GitHub
  Now You See Me, Now You Don't
  ☆1,034Jan 23, 2026Updated 2 months ago
• therealdreg / phook

  View on GitHub
  Full DLL Hooking, phrack 65
  ☆53Aug 11, 2023Updated 2 years ago