cocomelonc / meowLinks
Cybersecurity research results. Simple C/C++ and Python implementations
☆245Updated this week
Alternatives and similar repositories for meow
Users that are interested in meow are comparing it to the libraries listed below
Sorting:
- Centralized resource for listing and organizing known injection techniques and POCs☆588Updated last month
- Important notes and topics on my journey towards mastering Windows Internals☆397Updated last year
- ☆356Updated last year
- My collection of malware dev links☆277Updated last month
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆540Updated 2 months ago
- Performing Indirect Clean Syscalls☆565Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆697Updated 4 months ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆390Updated last month
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆349Updated 5 months ago
- Analyse your malware to surgically obfuscate it☆483Updated last month
- Collect Windows telemetry for Maldev☆364Updated last week
- A small x64 library to load dll's into memory.☆445Updated last year
- Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.☆249Updated 8 months ago
- Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls☆370Updated 9 months ago
- A tutorial on how to write a packer for Windows!☆281Updated last year
- Full source of the Conti Ransomware Including the missing Locker files from the original leak. I have fixed some of the errors intentiona…☆150Updated 2 years ago
- The Definitive Guide To Process Cloning on Windows☆506Updated last year
- C++ self-Injecting dropper based on various EDR evasion techniques.☆385Updated last year
- Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.☆642Updated last year
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆483Updated last year
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆285Updated last year
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆343Updated 11 months ago
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆450Updated 2 years ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆165Updated 3 months ago
- PoCs for Kernelmode rootkit techniques research.☆376Updated 5 months ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆197Updated last year
- Process Injection using Thread Name☆274Updated 2 months ago
- Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…☆228Updated 8 months ago
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆504Updated last year
- ☆259Updated last year