BSides Prishtina 2024 Malware Development and Persistence workshop
☆128Feb 28, 2026Updated last week
Alternatives and similar repositories for bsprishtina-2024-maldev-workshop
Users that are interested in bsprishtina-2024-maldev-workshop are comparing it to the libraries listed below
Sorting:
- ☆44Apr 27, 2024Updated last year
- OFFZONE 2024 Malware Persistence workshop☆22Dec 18, 2024Updated last year
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆12May 31, 2024Updated last year
- ☆15Aug 17, 2023Updated 2 years ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆283Jun 15, 2024Updated last year
- A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MAN☆105Jan 26, 2026Updated last month
- Indirect syscalls + DInvoke made simple.☆95Dec 24, 2024Updated last year
- Implementing AES 256 CBC in AES-NI - MASM Format☆19Aug 9, 2025Updated 7 months ago
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆85Jul 11, 2025Updated 7 months ago
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- Cybersecurity research results. Simple C/C++ and Python implementations☆301Mar 2, 2026Updated last week
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆762Jan 26, 2025Updated last year
- ☆121Nov 21, 2024Updated last year
- Various methods of executing shellcode☆74Mar 27, 2023Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Excel Add In Payload Generator☆14Oct 9, 2023Updated 2 years ago
- Mythic C2 Agent written in x64 PIC C☆84Jan 29, 2025Updated last year
- A python script that automates a C2 Profile build☆48Dec 14, 2025Updated 2 months ago
- Simple BOF to read the protection level of a process☆118May 10, 2023Updated 2 years ago
- An example reference design for a proposed BOF PE☆201Jan 23, 2026Updated last month
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆78Feb 8, 2023Updated 3 years ago
- ☆59Oct 24, 2024Updated last year
- ☆334Sep 21, 2025Updated 5 months ago
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆290May 27, 2024Updated last year
- ☆109Feb 17, 2025Updated last year
- Rootkit for the blue team. Sophisticated and optimized LKM to detect and prevent malicious activity☆34Apr 26, 2024Updated last year
- This repository implements Threadless Injection in C☆172Dec 23, 2023Updated 2 years ago
- A Mythic Agent written in PIC C.☆206Feb 4, 2025Updated last year
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆73Nov 11, 2025Updated 3 months ago
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆541Feb 13, 2024Updated 2 years ago
- Generate AES128 and AES256 Kerberos keys from a given username, password, and realm☆18Sep 18, 2024Updated last year
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆199May 29, 2025Updated 9 months ago
- ☆42Mar 24, 2024Updated last year
- Tools for analyzing EDR agents☆278Jun 10, 2024Updated last year
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆308Dec 9, 2023Updated 2 years ago
- Collect Windows telemetry for Maldev☆460Jan 30, 2026Updated last month
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Jan 30, 2025Updated last year
- A lightweight redirector for Google Cloud Run, enabling domain fronting via Google-owned infrastructure.☆134Nov 12, 2025Updated 3 months ago