cocomelonc/2022-06-05-malware-av-evasion-7 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cocomelonc/2022-06-05-malware-av-evasion-7

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cocomelonc/2022-06-05-malware-av-evasion-7)

Close

cocomelonc / 2022-06-05-malware-av-evasion-7View on GitHubMore

• External links
• Readme badge

Malware AV evasion via disable Windows Defender (Registry). C++

☆36Jun 5, 2022Updated 3 years ago

Alternatives and similar repositories for 2022-06-05-malware-av-evasion-7

Users that are interested in 2022-06-05-malware-av-evasion-7 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆23Apr 7, 2022Updated 4 years ago
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 4 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Apr 21, 2022Updated 3 years ago
• cocomelonc / 2022-05-02-malware-pers-3

  View on GitHub
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13May 2, 2022Updated 3 years ago
• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆14Jan 28, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• cocomelonc / 2022-07-21-malware-tricks-22

  View on GitHub
  Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
  ☆21Jul 24, 2022Updated 3 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆22Dec 18, 2024Updated last year
• OffenseTeacher / NimSkrull

  View on GitHub
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆13May 20, 2023Updated 2 years ago
• cocomelonc / peekaboo

  View on GitHub
  It bridges my research with a functional tool. I want to provide a safe, open-source framework for hackers to test evasion and for defend…
  ☆287Apr 5, 2026Updated 2 weeks ago
• gavz / awesome-windows-exploitation

  View on GitHub
  ☆24Jul 28, 2020Updated 5 years ago
• jfmaes / talks-cons

  View on GitHub
  aggregated repo for all conferences and talks I am giving
  ☆17Oct 30, 2021Updated 4 years ago
• cocomelonc / 2023-06-07-syscalls-1

  View on GitHub
  Malware dev tricks. Syscalls part 1. Simple C example
  ☆10Jun 8, 2023Updated 2 years ago
• accidentalrebel / RATwurst

  View on GitHub
  Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.
  ☆49Jul 13, 2021Updated 4 years ago
• 0xv1n / proc-suspend

  View on GitHub
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Mar 26, 2023Updated 3 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• cocomelonc / bsprishtina-2024-maldev-workshop

  View on GitHub
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆132Updated this week
• AlionGreen / apc-injection

  View on GitHub
  Process Injection: APC Injection
  ☆34Jan 13, 2021Updated 5 years ago
• MalwareLeaks / Conti-Ransomware-Source-Full

  View on GitHub
  Conti Ransomware malware leak WITH LOCKER
  ☆25Mar 5, 2022Updated 4 years ago
• knight0x07 / PoC-Malware-TTPs

  View on GitHub
  PoC-Malware-TTPs
  ☆49Mar 26, 2023Updated 3 years ago
• Antwns / AntCrypter

  View on GitHub
  File and executable crypter with comprehensible GUI and built-in anti-malicious use
  ☆21Sep 3, 2020Updated 5 years ago
• passthehashbrowns / DInvokeProcessHollowing

  View on GitHub
  ☆31Aug 23, 2020Updated 5 years ago
• machine1337 / pyobfuscate

  View on GitHub
  A simple and efficent script to obfuscate python payloads to make it completely FUD
  ☆40Nov 28, 2023Updated 2 years ago
• amitschendel / venom-rootkit

  View on GitHub
  A simple Windows kernel rootkit.
  ☆93May 13, 2025Updated 11 months ago
• OrShazam / ChainEngine

  View on GitHub
  automates exploits using ROP chains, using ntdll-scraper
  ☆16May 26, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• cocomelonc / OffensiveCpp

  View on GitHub
  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.
  ☆13May 31, 2024Updated last year
• bfosterjr / portfwd

  View on GitHub
  ☆13Dec 27, 2014Updated 11 years ago
• OffenseTeacher / Steganim

  View on GitHub
  ☆46Jun 21, 2023Updated 2 years ago
• rxOred / process-hollowing

  View on GitHub
  process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread
  ☆31Jan 9, 2022Updated 4 years ago
• ustayready / redteam-plan

  View on GitHub
  Issues to consider when planning a red team exercise.
  ☆14Aug 23, 2017Updated 8 years ago
• FatRodzianko / Get-Writable

  View on GitHub
  Find world writable directories that contain a .exe or .dll file
  ☆13Aug 31, 2021Updated 4 years ago
• muturikaranja / kernel-windowless-wndproc-hook

  View on GitHub
  hooks gServerHandlers xxxEventWndProc
  ☆13May 1, 2022Updated 3 years ago
• nelfo / VMP-Hwid-Decoder

  View on GitHub
  Decoder for VMProtect hwids
  ☆18Aug 1, 2022Updated 3 years ago
• rbmm / Hollowed-Process

  View on GitHub
  ☆29Aug 24, 2025Updated 7 months ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• ef1500 / phonebrute

  View on GitHub
  Generate Valid Phone Numbers With The NPA-NXX Database
  ☆12May 13, 2023Updated 2 years ago
• yanghaoi / ReflectiveDllSource

  View on GitHub
  CobaltStrike Reflective Dll Source
  ☆19Feb 20, 2022Updated 4 years ago
• lucky-luk3 / ActiveDirectory

  View on GitHub
  Apuntes Pentesting a ActiveDirectory PentesterAcademy
  ☆22Jun 9, 2019Updated 6 years ago
• Offensive-Panda / WPM-MAJIC-ENTRY-POINT-INJECTION

  View on GitHub
  This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…
  ☆18Oct 31, 2024Updated last year
• soufianetahiri / CitrixSecureAccessAuthCookieDump

  View on GitHub
  Dump Citrix Secure Access auth cookie from the process memory
  ☆76Jun 24, 2022Updated 3 years ago
• 0xJs / AzurePowerCommands

  View on GitHub
  Extra cmdlets to help with quering security related information from Azure
  ☆15Sep 16, 2024Updated last year
• Flawww / ObfuscatedJumpGenerator

  View on GitHub
  Dynamically generated obfuscated jumps and/or function calls
  ☆38Apr 19, 2023Updated 3 years ago