Alternatives and similar repositories for 2022-06-05-malware-av-evasion-7

Users that are interested in 2022-06-05-malware-av-evasion-7 are comparing it to the libraries listed below

• ZeroMemoryEx / Hooks_Hunter
  Simple API Hooks detector
  ☆72Updated 2 years ago
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆79Updated 2 years ago
• APT64 / KernelAVKiller
  Antivirus killer using ring-0 kernel driver. Antivirus processes will automatically close while the killer is running.
  ☆6Updated 2 years ago
• XaFF-XaFF / Shellcodev
  Shellcodev is a tool designed to help and automate the process of shellcode creation.
  ☆110Updated last year
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆30Updated 5 years ago
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆102Updated 2 years ago
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆138Updated 2 years ago
• cyberark / malware-research
  ☆37Updated 5 months ago
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆47Updated last year
• PL-V / Firefox-Grabber
  Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users
  ☆42Updated 2 years ago
• cocomelonc / 2022-07-21-malware-tricks-22
  Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
  ☆20Updated 3 years ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆104Updated 2 years ago
• hasherezade / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆10Updated 2 years ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆74Updated last year
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆29Updated last year
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆59Updated 2 years ago
• ZeroMemoryEx / TrampHook
  Simple x86 Trampoline Hook
  ☆41Updated 3 years ago
• C0UNT1NGST4RS / Hellokitty-Ransomware-Source-Code
  Hellokitty Ransomware Source Code
  ☆16Updated last year
• ZeroMemoryEx / Tokenizer
  Kernel Mode Driver for Elevating Process Privileges
  ☆132Updated 2 years ago
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆35Updated 4 years ago
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆64Updated 3 years ago
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆88Updated 2 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆71Updated 4 years ago
• 0x44F / WinKit
  💻 Windows 10 Kernel-mode rootkit
  ☆31Updated 2 years ago
• accidentalrebel / shcode2exe
  Compile shellcode into an exe file from Windows or Linux.
  ☆68Updated 2 months ago
• Flawww / NtSyscaller
  Manually perform syscalls without going through any external API or DLL.
  ☆19Updated 2 years ago
• accidentalrebel / RATwurst
  Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.
  ☆51Updated 4 years ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆76Updated 3 years ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated 2 years ago
• dr4k0nia / Greenline
  Unpacker and Config Extractor for managed Redline Stealer payloads
  ☆42Updated 2 years ago