cocomelonc / 2022-04-20-malware-pers-1

Related projects ⓘ

Alternatives and complementary repositories for 2022-04-20-malware-pers-1

• cocomelonc / 2022-01-24-malware-injection-15
  Process injection via KernelCallbackTable
  ☆14Updated 2 years ago
• cocomelonc / 2022-04-13-malware-injection-19
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Updated 2 years ago
• cocomelonc / 2022-04-02-malware-injection-18
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Updated 2 years ago
• cocomelonc / 2022-06-27-malware-injection-20
  Run shellcode via EnumDesktopsA. C++ implementation
  ☆13Updated 2 years ago
• cocomelonc / 2022-05-02-malware-pers-3
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13Updated 2 years ago
• D4rthMaulCop / DarthNetLoader
  ☆14Updated last year
• Aetsu / drakus
  Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…
  ☆13Updated 3 years ago
• HackingThings / SuperSneakyExec
  Loading and executing shellcode in C# without PInvoke.
  ☆21Updated 2 years ago
• cocomelonc / 2021-04-09-av-evasion-1-
  AV engines evasion for C++ simple malware part 1 source code
  ☆12Updated 2 years ago
• GetRektBoy724 / JALSI
  JALSI - Just Another Lame Shellcode Injector
  ☆30Updated 3 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆15Updated 6 years ago
• plackyhacker / PowerGhost
  A custom run space to bypass AMSI and Constrained Language mode in PowerShell.
  ☆18Updated last year
• mobdk / winNoise
  Execute embedded Mimikatz
  ☆13Updated 2 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆17Updated 4 years ago
• jaamaal / Embed
  Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…
  ☆20Updated 3 years ago
• oldboy21 / CGPL
  Yet, Another Packer/Loader
  ☆25Updated last year
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 2 years ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• slyd0g / SharpCryptUnprotectData
  ☆15Updated 2 years ago
• mrd0x / NodeJSTools_LOLBIN
  ☆14Updated 2 years ago
• EspressoCake / Aggressor_Scripts
  A compilation of Aggressor/Sleep scripts for operational purposes that I've made.
  ☆11Updated 3 years ago
• VirtualAlllocEx / Create_Thread_Inline_Assembly_x86
  This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly
  ☆17Updated last year
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• tomcarver16 / SimpleInjector
  A simple injector that uses LoadLibraryA
  ☆16Updated 4 years ago
• APTortellini / DoH-Stager
  ☆12Updated 2 years ago
• X-C3LL / wfp-reader
  Proof of concept - Covert Channel using Windows Filtering Platform (C#)
  ☆21Updated 3 years ago