am0nsec / vx
Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
☆177Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for vx
- Windows System Programming Experiments☆216Updated 2 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆156Updated 3 months ago
- My notes while studying Windows exploitation☆184Updated last year
- Kernel Exploits☆242Updated 3 years ago
- ☆132Updated last year
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆220Updated 3 months ago
- Conti Locker source code☆184Updated 2 years ago
- Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows☆197Updated 2 years ago
- Sleep Obfuscation☆680Updated 11 months ago
- Expriments☆439Updated last month
- ☆459Updated 2 years ago
- Enumerating and removing kernel callbacks using signed vulnerable drivers☆541Updated last year
- Set of antianalysis techniques found in malware☆129Updated last year
- WTSRM☆199Updated 2 years ago
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆217Updated last year
- ☆469Updated last week
- Managed assembly shellcode generation☆263Updated 3 years ago
- Evasive Process Hollowing Techniques☆134Updated 4 years ago
- ☆94Updated 2 years ago
- ☆123Updated last year
- Phantom DLL hollowing PoC☆350Updated 2 years ago
- A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)☆427Updated 2 years ago
- Research on Anti-malware and other related security solutions☆256Updated 4 years ago
- EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and e…☆266Updated last year
- A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.☆396Updated last year
- NINA: No Injection, No Allocation x64 Process Injection Technique☆195Updated 4 years ago
- Tools and PoCs for Windows syscall investigation.☆354Updated 6 months ago
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆315Updated 2 years ago
- Experiment on reproducing Obfuscate & Sleep☆138Updated 3 years ago