☆10Jul 1, 2023Updated 2 years ago
Alternatives and similar repositories for Malware-Development
Users that are interested in Malware-Development are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Mimikatz embedded as classes☆27Oct 25, 2021Updated 4 years ago
- A python polymorphic engine for C programs☆11Dec 8, 2023Updated 2 years ago
- Enable or Disable TokenPrivilege(s)☆15May 17, 2024Updated 2 years ago
- In-memory hiding technique☆65Jan 5, 2025Updated last year
- miscellaneous codes☆38Sep 24, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆41Jul 9, 2023Updated 2 years ago
- ☆19Aug 6, 2021Updated 4 years ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆16May 6, 2024Updated 2 years ago
- Shellcode execution via x86 inline assembly based on MSVC syntax☆17Apr 26, 2023Updated 3 years ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆25Sep 29, 2023Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆16Apr 25, 2022Updated 4 years ago
- Quick python script to replace the NtAPI functions within SysWhispers' assembly and header files with random strings☆28May 30, 2022Updated 4 years ago
- Umbrella will protect your shellcode from the rain.☆31Jun 4, 2025Updated last year
- Multi-Arch docker image for boringtun☆12Aug 28, 2025Updated 10 months ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Shellcode Loader Utilizing ETW Events☆66Feb 26, 2025Updated last year
- ☆60Dec 15, 2023Updated 2 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Pseudo-shell for RCE scenarios: tunnels commands via /tmp sockets to a local daemon, keeps context, no bind or reverse shell needed.☆46Jun 12, 2025Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆36Apr 5, 2022Updated 4 years ago
- Methodoloy for pentesting web applications.☆10Aug 18, 2022Updated 3 years ago
- ☆127Sep 1, 2024Updated last year
- ☆69Apr 20, 2026Updated 2 months ago
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆144Apr 6, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This is just some simple code (very basic) for messing about with eBPF☆12Jan 10, 2026Updated 5 months ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆32Aug 23, 2023Updated 2 years ago
- Windows x64 kernel mode rootkit process hollowing POC.☆192Jun 30, 2023Updated 2 years ago
- Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.☆23Nov 11, 2025Updated 7 months ago
- Stub for polymorphic code☆11Mar 18, 2023Updated 3 years ago
- An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD☆49Mar 10, 2025Updated last year
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆83Apr 11, 2026Updated 2 months ago
- Some YARA rules i will add from time to time☆12May 31, 2019Updated 7 years ago
- ☆12Aug 1, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Map remote .NET assemblies to memory for further invocation.☆38Oct 22, 2021Updated 4 years ago
- From C to binary shellcode converter.☆58Nov 11, 2025Updated 7 months ago
- ☆11Feb 12, 2023Updated 3 years ago
- Explore and filter your GitHub starred repositories☆24Dec 5, 2023Updated 2 years ago
- Malware?☆75Oct 26, 2025Updated 8 months ago
- Go wrapper for in-memory DLL module loader, MemoryModule☆32Feb 13, 2018Updated 8 years ago
- Section Mapping Process Injection modified with SysWhisper2 (sw2-secinject): Cobalt Strike BOF☆44Jun 23, 2022Updated 4 years ago