ZeroMemoryEx / APT38-0day-Stealer
APT38 Tactic PoC for Stealing 0days from security professionals
☆278Updated last year
Alternatives and similar repositories for APT38-0day-Stealer:
Users that are interested in APT38-0day-Stealer are comparing it to the libraries listed below
- This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp…☆412Updated last year
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆423Updated last year
- CaveCarver - PE backdooring tool which utilizes and automates code cave technique☆222Updated last year
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆375Updated 8 months ago
- Performing Indirect Clean Syscalls☆522Updated last year
- Bypass Malware Sandbox Evasion Ram check☆137Updated 2 years ago
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆280Updated 10 months ago
- Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.☆391Updated last year
- Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscal…☆308Updated last year
- Remote Shellcode Injector☆212Updated last year
- Execute shellcode from a remote-hosted bin file using Winhttp.☆232Updated last year
- Payload Loader With Evasion Features☆315Updated 2 years ago
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆292Updated last year
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆366Updated last year
- ☆323Updated last year
- C++ self-Injecting dropper based on various EDR evasion techniques.☆369Updated last year
- All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming☆229Updated 5 months ago
- TartarusGate, Bypassing EDRs☆573Updated 3 years ago
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆527Updated 3 weeks ago
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆373Updated last year
- ☆255Updated last year
- .NET assembly loader with patchless AMSI and ETW bypass☆319Updated last year
- AV bypass while you sip your Chai!☆218Updated 10 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆656Updated 2 weeks ago
- Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime☆302Updated last year
- PE obfuscator with Evasion in mind☆213Updated last year
- Lifetime AMSI bypass☆618Updated last year
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆469Updated last year
- Collection of UAC Bypass Techniques Weaponized as BOFs☆486Updated last year
- Modules used by the Havoc Framework☆226Updated 9 months ago