Alternatives and similar repositories for EVIL_RABBIT

Users that are interested in EVIL_RABBIT are comparing it to the libraries listed below

• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆128Updated 3 years ago
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• h0mbre / Dali
  ☆67Updated 2 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 3 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆52Updated 6 years ago
• oneNutW0nder / CatTails
  Raw socket library/framework for red team events
  ☆34Updated 2 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆98Updated 3 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• skelsec / pypykatz-volatility3
  pypykatz plugin for volatility3 framework
  ☆40Updated last month
• redcanaryco / exploit-primitive-playground
  ☆63Updated last year
• snemes / malware-analysis
  ☆23Updated 4 years ago
• sapph2c / bifrost
  A Flask-based HTTP(S) command and control (C2) with a web frontend. Malleable agent written in Go.
  ☆36Updated last year
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated last year
• thesp0nge / shellerate
  A shellcode generator with encryption, encoding and polymorphism facilities built-in
  ☆33Updated 3 years ago
• vulnwarex / bin2sc
  Binary to shellcode from an object/executable format 32 & 64-bit PE , ELF
  ☆74Updated 4 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 2 years ago
• obscuritylabs / PeFixup
  PE File Blessing - To continue or not to continue
  ☆87Updated 5 years ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆29Updated 4 years ago
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 5 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 4 years ago
• pentesteracademy / linux-rootkits-red-blue-teams
  Linux Rootkits (4.x Kernel)
  ☆82Updated 4 years ago
• n00py / Slackor
  A Golang implant that uses Slack as a command and control server
  ☆47Updated 5 years ago
• ITAYC0HEN / SUNBURST-Cracked
  The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.
  ☆56Updated 4 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆65Updated 7 years ago
• msuiche / smbaloo
  ☆48Updated 5 years ago
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• FlamingSpork / iptable_evil
  An evil bit backdoor for iptables
  ☆52Updated 4 years ago
• tmenochet / XorPacker
  Basic packer using XOR encryption
  ☆30Updated last year