Alternatives and similar repositories for Awesome-Bootkits-Rootkits-Development

Users that are interested in Awesome-Bootkits-Rootkits-Development are comparing it to the libraries listed below

• TheMalwareGuardian / Bentico
  Windows Kernel Mode Rootkit
  ☆54Updated last month
• TheMalwareGuardian / Abismo
  UEFI Windows Bootkit
  ☆40Updated 11 months ago
• 0xHossam / KernelCallbackTable-Injection-PoC
  Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…
  ☆222Updated 7 months ago
• ColeHouston / Sunder
  Windows rootkit designed to work with BYOVD exploits
  ☆198Updated 4 months ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆156Updated 2 months ago
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆113Updated last month
• Offensive-Panda / DefenseEvasionTechniques
  This comprehensive and central repository is designed for cybersecurity enthusiasts, researchers, and professionals seeking to stay ahead…
  ☆118Updated 2 weeks ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆81Updated last week
• oomar400 / Malware-Development
  Write-ups and proof of concepts of design and implementaion of various modern malwares.
  ☆28Updated 2 years ago
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆100Updated 3 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆224Updated 5 months ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆36Updated last year
• VirtualAlllocEx / Direct-Syscalls-vs-Indirect-Syscalls
  The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls
  ☆192Updated last year
• hdks-bug / hermit
  A command and control framework.
  ☆51Updated 5 months ago
• V-i-x-x / kernel-callback-removal
  kernel callback removal (Bypassing EDR Detections)
  ☆167Updated 2 months ago
• OtterHacker / Hooker
  ☆107Updated 7 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• cocomelonc / mdmz_book
  The result of research and investigation of malware development tricks, techniques, evasion, cryptography and linux malware
  ☆45Updated 2 months ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 7 months ago
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆178Updated last year
• Maldev-Academy / CodeSearchDemo
  ☆39Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆89Updated 11 months ago
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆161Updated last year
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆167Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆66Updated last month
• Archie-osu / PowerHook
  Hooking KPRCB IdlePreselect function to gain execution inside PID 0.
  ☆63Updated last month
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆215Updated 9 months ago
• Kudaes / Eclipse
  Activation Context Hijack
  ☆155Updated 6 months ago
• deepinstinct / ShimMe
  ☆141Updated 7 months ago