cocomelonc / 2022-04-20-malware-pers-1
Malware development: persistence - part 1: startup folder registry keys. C++ implementation
☆12Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for 2022-04-20-malware-pers-1
- Process injection via KernelCallbackTable☆14Updated 2 years ago
- Classic DLL injection. Download dll from url and inject. Simple C++ implementation☆10Updated 2 years ago
- Find kernel32 base and API addresses. Simple C++ implementation☆24Updated 2 years ago
- Run shellcode via EnumDesktopsA. C++ implementation☆13Updated 2 years ago
- Malware persistence via COM DLL hijacking. C++ implementation example☆13Updated 2 years ago
- ☆14Updated last year
- Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…☆13Updated 3 years ago
- Loading and executing shellcode in C# without PInvoke.☆21Updated 2 years ago
- AV engines evasion for C++ simple malware part 1 source code☆12Updated 2 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆15Updated 6 years ago
- A custom run space to bypass AMSI and Constrained Language mode in PowerShell.☆18Updated last year
- Execute embedded Mimikatz☆13Updated 2 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆20Updated 3 years ago
- Yet, Another Packer/Loader☆25Updated last year
- Dump Lsass Memory Using a Reflective Dll☆14Updated 2 years ago
- ☆12Updated 2 years ago
- ☆15Updated 2 years ago
- ☆14Updated 2 years ago
- A compilation of Aggressor/Sleep scripts for operational purposes that I've made.☆11Updated 3 years ago
- This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly☆17Updated last year
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- A simple injector that uses LoadLibraryA☆16Updated 4 years ago
- ☆12Updated 2 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Updated 3 years ago