cocomelonc/2022-06-05-malware-av-evasion-7 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cocomelonc/2022-06-05-malware-av-evasion-7

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cocomelonc/2022-06-05-malware-av-evasion-7)

Close

cocomelonc / 2022-06-05-malware-av-evasion-7View on GitHubMore

• External links
• Readme badge

Malware AV evasion via disable Windows Defender (Registry). C++

☆36Jun 5, 2022Updated 3 years ago

Alternatives and similar repositories for 2022-06-05-malware-av-evasion-7

Users that are interested in 2022-06-05-malware-av-evasion-7 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Apr 7, 2022Updated 4 years ago
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 4 years ago
• cocomelonc / 2022-06-27-malware-injection-20

  View on GitHub
  Run shellcode via EnumDesktopsA. C++ implementation
  ☆13Jun 27, 2022Updated 3 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆13Apr 21, 2022Updated 4 years ago
• cocomelonc / 2022-05-02-malware-pers-3

  View on GitHub
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13May 2, 2022Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆13Jan 28, 2022Updated 4 years ago
• cocomelonc / 2022-07-21-malware-tricks-22

  View on GitHub
  Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
  ☆22Jul 24, 2022Updated 3 years ago
• cocomelonc / 2022-01-14-malware-injection-13

  View on GitHub
  Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example
  ☆18Jan 17, 2022Updated 4 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆24Dec 18, 2024Updated last year
• OffenseTeacher / NimSkrull

  View on GitHub
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆13May 20, 2023Updated 3 years ago
• gavz / awesome-windows-exploitation

  View on GitHub
  ☆24Jul 28, 2020Updated 5 years ago
• cocomelonc / peekaboo

  View on GitHub
  It bridges my research with a functional tool. I want to provide a safe, open-source framework for hackers to test evasion and for defend…
  ☆309Apr 30, 2026Updated 3 weeks ago
• jfmaes / talks-cons

  View on GitHub
  aggregated repo for all conferences and talks I am giving
  ☆17Oct 30, 2021Updated 4 years ago
• cocomelonc / 2023-06-07-syscalls-1

  View on GitHub
  Malware dev tricks. Syscalls part 1. Simple C example
  ☆12Jun 8, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• accidentalrebel / RATwurst

  View on GitHub
  Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.
  ☆50Jul 13, 2021Updated 4 years ago
• 0xv1n / proc-suspend

  View on GitHub
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Mar 26, 2023Updated 3 years ago
• ergesun / net-utility

  View on GitHub
  Network Stack Worker Reuse Lib
  ☆10Nov 17, 2017Updated 8 years ago
• cocomelonc / bsprishtina-2024-maldev-workshop

  View on GitHub
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆144May 23, 2026Updated last week
• MalwareLeaks / Conti-Ransomware-Source-Full

  View on GitHub
  Conti Ransomware malware leak WITH LOCKER
  ☆24Mar 5, 2022Updated 4 years ago
• AlionGreen / apc-injection

  View on GitHub
  Process Injection: APC Injection
  ☆35Jan 13, 2021Updated 5 years ago
• knight0x07 / PoC-Malware-TTPs

  View on GitHub
  PoC-Malware-TTPs
  ☆49Mar 26, 2023Updated 3 years ago
• tiltedphoques / TiltedConnect

  View on GitHub
  Top layer of the network stack
  ☆14Jan 8, 2026Updated 4 months ago
• zoriya / Bomberman

  View on GitHub
  A complete bomberman game with heights, AI in lua, and shaders.
  ☆11Jun 26, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Antwns / AntCrypter

  View on GitHub
  File and executable crypter with comprehensible GUI and built-in anti-malicious use
  ☆21Sep 3, 2020Updated 5 years ago
• passthehashbrowns / DInvokeProcessHollowing

  View on GitHub
  ☆31Aug 23, 2020Updated 5 years ago
• machine1337 / pyobfuscate

  View on GitHub
  A simple and efficent script to obfuscate python payloads to make it completely FUD
  ☆38Nov 28, 2023Updated 2 years ago
• amitschendel / venom-rootkit

  View on GitHub
  A simple Windows kernel rootkit.
  ☆92May 13, 2025Updated last year
• OrShazam / ChainEngine

  View on GitHub
  automates exploits using ROP chains, using ntdll-scraper
  ☆15May 26, 2022Updated 4 years ago
• cocomelonc / OffensiveCpp

  View on GitHub
  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.
  ☆14May 31, 2024Updated last year
• bfosterjr / portfwd

  View on GitHub
  ☆13Dec 27, 2014Updated 11 years ago
• OffenseTeacher / Steganim

  View on GitHub
  ☆46Jun 21, 2023Updated 2 years ago
• ustayready / redteam-plan

  View on GitHub
  Issues to consider when planning a red team exercise.
  ☆14Aug 23, 2017Updated 8 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• rxOred / process-hollowing

  View on GitHub
  process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread
  ☆31Jan 9, 2022Updated 4 years ago
• FatRodzianko / Get-Writable

  View on GitHub
  Find world writable directories that contain a .exe or .dll file
  ☆13Aug 31, 2021Updated 4 years ago
• muturikaranja / kernel-windowless-wndproc-hook

  View on GitHub
  hooks gServerHandlers xxxEventWndProc
  ☆13May 1, 2022Updated 4 years ago
• nelfo / VMP-Hwid-Decoder

  View on GitHub
  Decoder for VMProtect hwids
  ☆18Aug 1, 2022Updated 3 years ago
• rbmm / Hollowed-Process

  View on GitHub
  ☆28Aug 24, 2025Updated 9 months ago
• ef1500 / phonebrute

  View on GitHub
  Generate Valid Phone Numbers With The NPA-NXX Database
  ☆12May 13, 2023Updated 3 years ago
• yanghaoi / ReflectiveDllSource

  View on GitHub
  CobaltStrike Reflective Dll Source
  ☆19Feb 20, 2022Updated 4 years ago