Alternatives and similar repositories for bsprishtina-2024-maldev-workshop

Users that are interested in bsprishtina-2024-maldev-workshop are comparing it to the libraries listed below

• rad9800 / byor
  ☆157Updated 5 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated 2 years ago
• lsecqt / BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero
  ☆41Updated last year
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆164Updated 8 months ago
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆131Updated 2 months ago
• 0xNinjaCyclone / AsmLdr
  Dynamic shellcode loader with sophisticated evasion capabilities
  ☆251Updated last month
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆86Updated 6 months ago
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆104Updated last year
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆101Updated 7 months ago
• cocomelonc / mdmz_book
  The result of research and investigation of malware development tricks, techniques, evasion, cryptography and linux malware
  ☆61Updated 2 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆117Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆71Updated 9 months ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆144Updated last year
• OtterHacker / Hooker
  ☆108Updated last year
• rad9800 / talks
  ☆60Updated 6 months ago
• unkvolism / Fuck-Etw
  Bypass the Event Trace Windows(ETW) and unhook ntdll.
  ☆115Updated 2 years ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆129Updated 10 months ago
• FuzzySecurity / BHUSA-2023
  ☆105Updated last year
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆202Updated 9 months ago
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆159Updated 3 months ago
• Kudaes / Eclipse
  Activation Context Hijack
  ☆170Updated 3 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆68Updated last year
• Cracked5pider / earlycascade-injection
  early cascade injection PoC based on Outflanks blog post
  ☆232Updated last year
• deepinstinct / ShimMe
  ☆145Updated last year
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆162Updated 11 months ago
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆199Updated 9 months ago
• tehstoni / LexiCrypt
  Shellcode encryptor using a substitution cipher with a randomly generated key.
  ☆140Updated 9 months ago
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆145Updated 6 months ago
• cocomelonc / offzone-2024-malware-persistence-workshop
  OFFZONE 2024 Malware Persistence workshop
  ☆21Updated 10 months ago