cocomelonc/2022-07-21-malware-tricks-22 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cocomelonc/2022-07-21-malware-tricks-22

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cocomelonc/2022-07-21-malware-tricks-22)

Close

cocomelonc / 2022-07-21-malware-tricks-22View on GitHubMore

• External links
• Readme badge

Run payload like a Lazarus Group (UuidFromStringA). C++ implementation

☆22Jul 24, 2022Updated 3 years ago

Alternatives and similar repositories for 2022-07-21-malware-tricks-22

Users that are interested in 2022-07-21-malware-tricks-22 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Apr 7, 2022Updated 4 years ago
• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆13Jan 28, 2022Updated 4 years ago
• cocomelonc / 2022-06-27-malware-injection-20

  View on GitHub
  Run shellcode via EnumDesktopsA. C++ implementation
  ☆13Jun 27, 2022Updated 3 years ago
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 4 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆13Apr 21, 2022Updated 4 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• cocomelonc / 2022-01-14-malware-injection-13

  View on GitHub
  Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example
  ☆18Jan 17, 2022Updated 4 years ago
• cocomelonc / 2022-05-02-malware-pers-3

  View on GitHub
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13May 2, 2022Updated 4 years ago
• cocomelonc / 2022-06-05-malware-av-evasion-7

  View on GitHub
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆36Jun 5, 2022Updated 3 years ago
• jbaines-r7 / overkill

  View on GitHub
  QNAP N-Day (Probably not CVE-2020-2509)
  ☆14Jul 27, 2022Updated 3 years ago
• cocomelonc / peekaboo

  View on GitHub
  It bridges my research with a functional tool. I want to provide a safe, open-source framework for hackers to test evasion and for defend…
  ☆309Apr 30, 2026Updated last week
• sergiovks / AntiVirus-Bypass-PowerShell-In-Memory-Injection

  View on GitHub
  Script made for bypassing antivirus using Powershell Injection method. Place your shellcode from msfvenom on line 15, the script can be c…
  ☆15Jun 14, 2023Updated 2 years ago
• cocomelonc / 2023-06-07-syscalls-1

  View on GitHub
  Malware dev tricks. Syscalls part 1. Simple C example
  ☆12Jun 8, 2023Updated 2 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆24Dec 18, 2024Updated last year
• MalwareStudio / Ransomware2.0_by_clutter_tech

  View on GitHub
  ☆13Sep 26, 2020Updated 5 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• 0xv1n / proc-suspend

  View on GitHub
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Mar 26, 2023Updated 3 years ago
• jfmaes / blogposts-talks-and-tidbits

  View on GitHub
  all random stuff that dont warrant a seperate repo
  ☆12Sep 2, 2022Updated 3 years ago
• codehz / bashrc-backdoor

  View on GitHub
  ☆20Dec 14, 2021Updated 4 years ago
• mr-r3b00t / NotProxyShellHunter

  View on GitHub
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆26Oct 2, 2022Updated 3 years ago
• AhmedRaja1 / Malware-Development

  View on GitHub
  Malware Development
  ☆10Sep 30, 2020Updated 5 years ago
• MalwareStudio / Worm-Locker2.0-OPEN-SOURCE-

  View on GitHub
  This is the published source code from the Worm Locker2.0 ransomware. Please open the README file in a zip file for more information.
  ☆14Dec 18, 2020Updated 5 years ago
• k3rwin / spring-cloud-gateway-rce

  View on GitHub
  spring-cloud-gateway-rce CVE-2022-22947
  ☆13Jul 13, 2022Updated 3 years ago
• opsxcq / malware-sample-banker-FEFAD618EB6177F07826D68A895769A8

  View on GitHub
  Brazilian banker malware identified by Notificacao_Infracao_De_Transito_99827462345231.js
  ☆11Oct 30, 2017Updated 8 years ago
• helloobaby / Babuk

  View on GitHub
  Babuk v2
  ☆11Sep 28, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• cocomelonc / OffensiveCpp

  View on GitHub
  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.
  ☆14May 31, 2024Updated last year
• accidentalrebel / RATwurst

  View on GitHub
  Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.
  ☆50Jul 13, 2021Updated 4 years ago
• rxOred / process-hollowing

  View on GitHub
  process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread
  ☆31Jan 9, 2022Updated 4 years ago
• rbmm / TL-TASK

  View on GitHub
  ☆19Sep 17, 2025Updated 7 months ago
• FarghlyMal / leaked_src

  View on GitHub
  some leaked src code for known and unknown malwares
  ☆23Aug 15, 2025Updated 8 months ago
• MalwareLeaks / Conti-Ransomware-Source-Full

  View on GitHub
  Conti Ransomware malware leak WITH LOCKER
  ☆24Mar 5, 2022Updated 4 years ago
• bbb93ef26e3c101ff11cdd21cab08a94 / MalwareRepository

  View on GitHub
  ☆16Jan 9, 2023Updated 3 years ago
• S3cur3Th1sSh1t / OffensiveNim

  View on GitHub
  My experiments in weaponizing Nim (https://nim-lang.org/)
  ☆17Mar 1, 2023Updated 3 years ago
• riskydissonance / SyscallsExample

  View on GitHub
  Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.
  ☆76Nov 12, 2021Updated 4 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• MalwareStudio / Worm-Locker2.0

  View on GitHub
  Please. Do not run this file on your or another computer !!! Use this file for educational purposes only !!! I am not responsible for the…
  ☆13Dec 17, 2020Updated 5 years ago
• j91321 / conti-manuals-analysis

  View on GitHub
  Analysis of techniques used by Conti ransomware affiliates from their leaked manuals.
  ☆19Aug 29, 2021Updated 4 years ago
• Octoberfest7 / BeatRev

  View on GitHub
  POC for frustrating/defeating Malware Analysts
  ☆156Jun 12, 2022Updated 3 years ago
• n0tspam / RunspaceLoader

  View on GitHub
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Dec 11, 2023Updated 2 years ago
• SaltedFishBayonet / Windows-Kernel-Crypto

  View on GitHub
  Windows kernel driver encryption library, support base64, aes-256, rsa-2048 and higher, ecc-256, single file, minimal dependence, support…
  ☆22May 20, 2021Updated 4 years ago
• raunvk / stealthware-backdoor

  View on GitHub
  Persistent & Undetectable Malware Backdoor
  ☆28May 8, 2024Updated 2 years ago
• jmgk77 / PDL

  View on GitHub
  A tool/library to proxify DLL
  ☆38Apr 10, 2022Updated 4 years ago