blackarrowsec / malware-research
Malware campaigns and APTs research by BlackArrow
☆18Updated 4 years ago
Alternatives and similar repositories for malware-research:
Users that are interested in malware-research are comparing it to the libraries listed below
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- ☆12Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆20Updated 5 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆19Updated 4 years ago
- ☆12Updated 4 years ago
- ☆17Updated last year
- My nim learning experiments☆11Updated 2 years ago
- Just another useless C2 occupying space in some HDD somewhere.☆20Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆22Updated 3 years ago
- Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…☆13Updated 4 years ago
- NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls☆11Updated 2 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- ☆13Updated 3 years ago
- Playing with PE's and Building Structures by Hand☆22Updated 2 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.☆15Updated 2 years ago
- Ansible role to deploy RedELK server☆18Updated last year
- Exactly what it sounds like, which is something rad☆22Updated 2 years ago
- A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.☆34Updated 3 years ago
- ☆24Updated 4 years ago
- SSDP Service Discovery☆16Updated 6 years ago
- A collection of my presentation materials.☆16Updated 10 months ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆61Updated 3 years ago
- ☆16Updated 3 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 3 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 4 years ago
- ☆26Updated 3 years ago
- ☆13Updated last year