cocomelonc/2022-05-02-malware-pers-3 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cocomelonc/2022-05-02-malware-pers-3

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cocomelonc/2022-05-02-malware-pers-3)

Close

cocomelonc / 2022-05-02-malware-pers-3View on GitHubMore

• External links
• Readme badge

Malware persistence via COM DLL hijacking. C++ implementation example

☆13May 2, 2022Updated 3 years ago

Alternatives and similar repositories for 2022-05-02-malware-pers-3

Users that are interested in 2022-05-02-malware-pers-3 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆13Jan 28, 2022Updated 4 years ago
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 3 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Apr 21, 2022Updated 3 years ago
• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆23Apr 7, 2022Updated 3 years ago
• cocomelonc / 2023-06-07-syscalls-1

  View on GitHub
  Malware dev tricks. Syscalls part 1. Simple C example
  ☆10Jun 8, 2023Updated 2 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• cocomelonc / 2022-06-05-malware-av-evasion-7

  View on GitHub
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆35Jun 5, 2022Updated 3 years ago
• cocomelonc / 2022-07-21-malware-tricks-22

  View on GitHub
  Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
  ☆20Jul 24, 2022Updated 3 years ago
• H4xl0r / Necro-Stealer

  View on GitHub
  ☣️ Necro Stealer + Web Panel
  ☆10May 2, 2020Updated 5 years ago
• killswitch-GUI / IsDebuggerPresent

  View on GitHub
  Debugger checks in 3 ways
  ☆19Jan 25, 2018Updated 8 years ago
• d35ha / RunPE

  View on GitHub
  An example of PE hollowing injection technique
  ☆26Jun 28, 2019Updated 6 years ago
• proxytype / Hide-FS

  View on GitHub
  Inject dll to explorer.exe and hide file from process.
  ☆23Apr 24, 2021Updated 4 years ago
• Archx0Mas / Dropper-Sektor7-Testing

  View on GitHub
  A dropper that decrypts encrypted xor payload and can inject it in explorer.exe proccess
  ☆10Aug 1, 2021Updated 4 years ago
• quantumcore / thawne

  View on GitHub
  Thawne is a Sentinel for your Program. A trojan that Reinfects systems. It installs itself on the system it's Executed on. After which Th…
  ☆10Oct 13, 2020Updated 5 years ago
• Mantraufo / KanonSys

  View on GitHub
  Bypass Windows defender syscall
  ☆18Jul 17, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• FreeLesio / WiFi-Evasion

  View on GitHub
  Extract Silently WiFi Passwords By Mail & USB
  ☆19Dec 4, 2021Updated 4 years ago
• Offensive-Panda / on-disk-detection-bypass

  View on GitHub
  Direct syscalls Injection to bypass AV/EDR
  ☆11May 18, 2024Updated last year
• wireless90 / ProcessInjector.NET

  View on GitHub
  Learning Process Injection and Hollowing techniques
  ☆42Jun 26, 2022Updated 3 years ago
• Darkabode / 0lib

  View on GitHub
  Zerokit shared code
  ☆17Mar 28, 2019Updated 7 years ago
• paranoidninja / 0xdarkvortex-red-team-ttps-part-2

  View on GitHub
  Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2
  ☆19Oct 8, 2020Updated 5 years ago
• rbmm / Hollowed-Process

  View on GitHub
  ☆29Aug 24, 2025Updated 7 months ago
• TheWover / AsyncRAT-VB.NET

  View on GitHub
  Remote Administration Tool For Windows VB.NET
  ☆12Mar 19, 2019Updated 7 years ago
• cocomelonc / peekaboo

  View on GitHub
  It bridges my research with a functional tool. I want to provide a safe, open-source framework for hackers to test evasion and for defend…
  ☆286Mar 11, 2026Updated 2 weeks ago
• exploitblizzard / Syscall-Example

  View on GitHub
  Using syscall to load shellcode, Evasion techniques
  ☆27Jul 18, 2021Updated 4 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• OffenseTeacher / NimSkrull

  View on GitHub
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆13May 20, 2023Updated 2 years ago
• Mantraufo / Kanoninjector

  View on GitHub
  Runpe + DInvoke + Syscall
  ☆16Jun 18, 2021Updated 4 years ago
• Narumiii / phantommap

  View on GitHub
  Phantom DLL Hollowing method implemented in modmap
  ☆18Jun 9, 2021Updated 4 years ago
• 0x44F / WinKit

  View on GitHub
  💻 Windows 10 Kernel-mode rootkit
  ☆31Sep 3, 2022Updated 3 years ago
• k-vitali / cryptomix-clop-ransomware

  View on GitHub
  ☆15Jun 5, 2019Updated 6 years ago
• h4xu3lyn / NTLib

  View on GitHub
  Headers for linking your software with ntdll.dll
  ☆15Nov 4, 2020Updated 5 years ago
• cocomelonc / OffensiveCpp

  View on GitHub
  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.
  ☆12May 31, 2024Updated last year
• nelfo / VMP-Hwid-Decoder

  View on GitHub
  Decoder for VMProtect hwids
  ☆18Aug 1, 2022Updated 3 years ago
• EvaStanAccount / MalwareDev

  View on GitHub
  ☆16Sep 23, 2021Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• rkzofficial / Horizon

  View on GitHub
  Remote Administration Tool, Server Written in C# and Client Written in C++
  ☆15Dec 8, 2022Updated 3 years ago
• ZeroMemoryEx / SleepKiller

  View on GitHub
  Bypass Malware Time Delays
  ☆106Sep 23, 2022Updated 3 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆22Dec 18, 2024Updated last year
• d35ha / ShellInjector

  View on GitHub
  Execute an arbitrary command within the context of another process
  ☆21Jun 28, 2019Updated 6 years ago
• safebuffer / edge-hot-delivery

  View on GitHub
  edge --> powerpoint --> remote-file --> shell
  ☆12May 17, 2019Updated 6 years ago
• oldboy21 / CGPL

  View on GitHub
  Yet, Another Packer/Loader
  ☆25Feb 26, 2023Updated 3 years ago
• LaCrak27 / RailwayBot

  View on GitHub
  A companion bot to railway.app, offering everything from usage reports to notifications of all kind.
  ☆10Sep 17, 2023Updated 2 years ago