Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.
☆49Jul 13, 2021Updated 4 years ago
Alternatives and similar repositories for RATwurst
Users that are interested in RATwurst are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A wacky exploitation framework written in pure python3.☆23Mar 24, 2024Updated 2 years ago
- A proof of concept of real custom GetProcAddress and GetModuleBaseAddress☆21Jul 9, 2022Updated 3 years ago
- Released alongside with a talk at REcon 2023, TheRestarter is an interactive command-line tool is designed to interact with the Windows …☆14Jun 8, 2023Updated 3 years ago
- Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2☆19Oct 8, 2020Updated 5 years ago
- Malware AV evasion via disable Windows Defender (Registry). C++☆35Jun 5, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Malware persistence via COM DLL hijacking. C++ implementation example☆15May 2, 2022Updated 4 years ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- Reversed source code to the Babuk ransomware builder.☆17Jul 1, 2021Updated 5 years ago
- Run payload like a Lazarus Group (UuidFromStringA). C++ implementation☆22Jul 24, 2022Updated 3 years ago
- A bootkit to bypass Windows login (WIP)☆10Oct 25, 2023Updated 2 years ago
- Communication Relay by creating a WiFi Mesh Network using ROS, and using that network for Data Telemetry, with Telemetry radios ( Ubiquit…☆11Dec 18, 2018Updated 7 years ago
- Simple little rootkit made in C☆14Feb 15, 2021Updated 5 years ago
- ☆10Nov 11, 2020Updated 5 years ago
- Conti Ransomware Source Code☆20Mar 1, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Repository of tools used in my blog☆53Mar 22, 2024Updated 2 years ago
- 汇编语言编写Shellcode加载器源代码 https://payloads.online/archivers/2022-02-16/1/☆77Oct 24, 2022Updated 3 years ago
- ☆12Aug 10, 2019Updated 6 years ago
- Win32 PE Anti-RE and Anti-debugging Framework☆13May 14, 2019Updated 7 years ago
- Malware campaigns and APTs research by BlackArrow☆19Apr 30, 2020Updated 6 years ago
- A Build Your Own Botnet Project Build For People Who Wanna Hijack Peoples Computers And Control Them With Over 300 Features!☆14Jun 2, 2019Updated 7 years ago
- An simplest PE parser, which list all import and export entries☆12Oct 11, 2018Updated 7 years ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆43Sep 3, 2020Updated 5 years ago
- ☆26Apr 10, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Process injection via KernelCallbackTable☆13Jan 28, 2022Updated 4 years ago
- Probably the easiest way to setup new beacon notifications in Cobalt Strike☆10Jan 7, 2022Updated 4 years ago
- Worm is an Android post exploitation Framework to gain remote access of any Android device by exploiting Android Debug Bridge.☆17Jun 7, 2024Updated 2 years ago
- Source Code of MSIL Ransom☆13Feb 11, 2023Updated 3 years ago
- Reads and prints information from the website MalAPI.io☆22Jul 14, 2022Updated 3 years ago
- Instrumenting a binary without source code to bypass anti-debug checks☆40Sep 25, 2021Updated 4 years ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆77Nov 19, 2024Updated last year
- Piece of code to detect and remove hooks in IAT☆66May 30, 2022Updated 4 years ago
- Reversed source code of the Babuk Ransomware Version 1☆18May 3, 2021Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Classic DLL injection. Download dll from url and inject. Simple C++ implementation☆10Apr 16, 2022Updated 4 years ago
- Dump LSASS by spoofing command line arguments to procdump.☆20Oct 21, 2024Updated last year
- ☆11Sep 30, 2023Updated 2 years ago
- just manipulatin these here tokens yes sir nothing weird☆21Apr 18, 2022Updated 4 years ago
- Zerokit shared code☆18Mar 28, 2019Updated 7 years ago
- Payload delivery via URL and some social engineering.☆16Jul 13, 2024Updated last year
- Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC☆177Aug 1, 2022Updated 3 years ago