cocomelonc / offzone-2024-malware-persistence-workshopLinks
OFFZONE 2024 Malware Persistence workshop
☆19Updated 6 months ago
Alternatives and similar repositories for offzone-2024-malware-persistence-workshop
Users that are interested in offzone-2024-malware-persistence-workshop are comparing it to the libraries listed below
Sorting:
- Windows AppLocker Driver (appid.sys) LPE☆62Updated 10 months ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆74Updated 5 months ago
- Ghosting-AMSI☆17Updated last month
- NailaoLoader: Hiding Execution Flow via Patching☆21Updated 3 months ago
- Section-based payload obfuscation technique for x64☆61Updated 10 months ago
- Construct the payload at runtime using an array of offsets☆63Updated last year
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- ☆48Updated 3 months ago
- Mockingjay process self injection POC☆33Updated last year
- A more reliable way of resolving syscall numbers in Windows☆49Updated last year
- ForsHops☆53Updated 3 months ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆83Updated 3 weeks ago
- ☆61Updated last year
- BYOVD Technique Example using viragt64 driver☆40Updated 11 months ago
- Unhook Ntdll.dll, Go & C++.☆24Updated 2 months ago
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆25Updated 2 months ago
- ☆55Updated 8 months ago
- ☆34Updated 2 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆65Updated 2 months ago
- Convert your shellcode into an ASCII string☆58Updated this week
- A 64 bit executable junk code engine for polymorphic malware.☆43Updated last week
- ☆36Updated 6 months ago
- ☆25Updated last week
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 10 months ago
- ☆62Updated 5 months ago
- .NET tool used to enrich RPC telemetry☆62Updated last week
- ☆107Updated 7 months ago
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated 10 months ago
- Malware?☆70Updated 8 months ago