Alternatives and similar repositories for bsprishtina-2024-maldev-workshop:

Users that are interested in bsprishtina-2024-maldev-workshop are comparing it to the libraries listed below

• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆164Updated 10 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆63Updated 10 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆55Updated 8 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 3 weeks ago
• OtterHacker / Hooker
  ☆105Updated 5 months ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆50Updated 4 months ago
• deepinstinct / ShimMe
  ☆140Updated 5 months ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆60Updated this week
• ghostpepper108 / Evasion
  ☆106Updated last year
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆77Updated this week
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• lsecqt / BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero
  ☆34Updated 11 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆79Updated last year
• securifybv / BOFRyptor
  ☆122Updated last year
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Updated last year
• flostyen / windows-persistence
  Windows Persistence IT-Security
  ☆97Updated last month
• inb1ts / CSSHide
  Encodes a payload within a generated mock-CSS file
  ☆59Updated last year
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆92Updated this week
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆100Updated 2 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆154Updated 4 months ago
• NtDallas / Svartalfheim
  Stage 0
  ☆156Updated 4 months ago
• 0xRedpoll / WhatsAppKeyBOF
  A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.
  ☆74Updated last month
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated 6 months ago
• paranoidninja / BRC4-BOF-Artillery
  ☆105Updated last month
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• amauricio / junkshell
  ☆67Updated last month
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆84Updated last year