Alternatives and similar repositories for 2022-07-21-malware-tricks-22:

Users that are interested in 2022-07-21-malware-tricks-22 are comparing it to the libraries listed below

• moscowchill / LSTAR-EN
  LSTAR - CobaltStrike Translated to EN
  ☆13Updated last year
• cocomelonc / 2022-04-02-malware-injection-18
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Updated 2 years ago
• cocomelonc / 2022-05-02-malware-pers-3
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆14Updated 2 years ago
• jordanjoewatson / payloadkit
  An offensive security framework for writing payloads
  ☆16Updated 2 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆23Updated 2 years ago
• MythicAgents / scarecrow_wrapper
  ☆17Updated 5 months ago
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆84Updated 2 years ago
• cocomelonc / 2021-04-09-av-evasion-1-
  AV engines evasion for C++ simple malware part 1 source code
  ☆12Updated 2 years ago
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆29Updated last year
• cocomelonc / 2022-04-20-malware-pers-1
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Updated 2 years ago
• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆30Updated 2 years ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆44Updated last year
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆36Updated 2 years ago
• reveng007 / DareDevil
  Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10
  ☆38Updated 2 years ago
• ScriptIdiot / BeaconNotifier-Discord
  Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.
  ☆33Updated 2 years ago
• paranoidninja / BRC4-Seminar-Stage-I
  These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…
  ☆19Updated last year
• Helixo32 / DetectHooks
  Detect userland hooks placed by AV/EDR
  ☆27Updated last year
• GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
  A repository filled with ideas to break/detect direct syscall techniques
  ☆27Updated 2 years ago
• Octoberfest7 / aggressor_snippets
  A collection of random small Aggressor snippets that don't warrant their own repo
  ☆23Updated 2 years ago
• susMdT / fictional-invention
  idk man this was the default github name
  ☆35Updated last year
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• GetRektBoy724 / ReversePowernoid
  Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)
  ☆30Updated 3 years ago
• brosck / APIHookingDetector
  「⚙️」Detect which native Windows API's (NtAPI) are being hooked
  ☆38Updated 3 months ago
• tothi / malicious-service
  Minimal Windows Service Template for demonstrating privilege escalation via weak service executable permissions
  ☆13Updated 2 years ago
• gokupwn / shootCutMe
  ShootCutMe an .LNK file creator tool for redteamer
  ☆13Updated 5 months ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆50Updated last year
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆24Updated 6 months ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆45Updated 2 years ago