brat-volk / EntomoLoader
C++ Multi-Stage Semi-Polymorphic Malware Loader.
☆9Updated 3 years ago
Alternatives and similar repositories for EntomoLoader:
Users that are interested in EntomoLoader are comparing it to the libraries listed below
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆84Updated 2 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 3 years ago
- Next gen process injection technique☆52Updated 4 years ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- Piece of code to detect and remove hooks in IAT☆63Updated 2 years ago
- Process Hollowing demonstration & explanation☆35Updated 4 years ago
- kernel to user mode APC injector☆44Updated 3 years ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆26Updated 5 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 3 years ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆17Updated 10 months ago
- ☆16Updated 3 years ago
- Bypass UAC at any level by abusing the Task Scheduler and environment variables☆31Updated 3 years ago
- Криптор на шелл-кодах☆10Updated 4 years ago
- Callstack spoofing using a VEH because VEH all the things.☆21Updated last month
- Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users☆42Updated 2 years ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆109Updated last year
- Malware AV evasion via disable Windows Defender (Registry). C++☆35Updated 2 years ago
- A simple PE loader.☆25Updated 2 years ago
- ☆34Updated last year
- ☆63Updated 2 years ago
- ☆13Updated 4 years ago
- XssBot-Модульный резидентный бот с супер админкой☆11Updated 2 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆137Updated 2 years ago
- 💻 Windows 10 Kernel-mode rootkit☆31Updated 2 years ago
- a stage1 DLL loader with sleep obfuscation☆35Updated 2 years ago
- A simple example on how to initiate a direct syscall on WoW64☆11Updated 7 years ago
- using the gpu to hide your payload☆57Updated 2 years ago
- Native Shellcode Injector Via Handle Hijacking & Pool Party.☆12Updated last year
- ☆39Updated 4 years ago
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆11Updated 4 months ago