brat-volk / EntomoLoader
C++ Multi-Stage Semi-Polymorphic Malware Loader.
☆9Updated 3 years ago
Alternatives and similar repositories for EntomoLoader:
Users that are interested in EntomoLoader are comparing it to the libraries listed below
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆83Updated 2 years ago
- kernel to user mode APC injector☆44Updated 3 years ago
- Piece of code to detect and remove hooks in IAT☆63Updated 2 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆72Updated 3 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 3 years ago
- Reimplementation of the KExecDD DSE bypass technique.☆47Updated 6 months ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- Next gen process injection technique☆45Updated 4 years ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆26Updated 5 years ago
- Криптор на шелл-кодах☆10Updated 4 years ago
- XssBot-Модульный резидентный бот с супер админкой☆12Updated 2 years ago
- 💻 Windows 10 Kernel-mode rootkit☆31Updated 2 years ago
- ☆34Updated last year
- Process Hollowing demonstration & explanation☆35Updated 4 years ago
- A simple example on how to initiate a direct syscall on WoW64☆11Updated 7 years ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆17Updated 10 months ago
- ☆12Updated 4 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆27Updated 2 years ago
- a stage1 DLL loader with sleep obfuscation☆35Updated 2 years ago
- Recreating and reviewing the Windows persistence methods☆36Updated 3 years ago
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆18Updated 2 years ago
- API Hammering with C++20☆45Updated 2 years ago
- 2022 Updated Kernelmode-Code☆31Updated last year
- Fud Runpe Av Evasion / All Av Bypass☆32Updated 2 years ago
- A Simple AES Command Line Crypter☆35Updated 2 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆136Updated 2 years ago
- A C++17 framework designed to enable obfuscation of constants, variables, and strings.☆26Updated last year
- Read Memory without ReadProcessMemory for Current Process☆76Updated 3 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82Updated last year
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago