Alternatives and similar repositories for MalDevSnippets

Users that are interested in MalDevSnippets are comparing it to the libraries listed below

• d35ha / ProcessHide
  ☆64Updated 2 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆39Updated 3 years ago
• thesecretclub / ArbitraryDirectoryDeletion
  From directory deletion to SYSTEM shell
  ☆111Updated 5 years ago
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆67Updated 3 years ago
• hackerhouse-opensource / envschtasksuacbypass
  Bypass UAC elevation on Windows 8 (build 9600) & above.
  ☆57Updated 3 years ago
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆89Updated 3 years ago
• devGnode / Reverse_shell
  Reverse Shell x86
  ☆16Updated 6 years ago
• GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
  A repository filled with ideas to break/detect direct syscall techniques
  ☆27Updated 3 years ago
• passthehashbrowns / suspendedunhook
  ☆41Updated 4 years ago
• limbenjamin / ReverseShellDll
  C++ Windows Reverse Shell - Universal DLL Hijack | SSL Encryption | Statically Linked
  ☆90Updated 5 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆42Updated 5 years ago
• ReCryptLLC / CVE-2022-42045
  ☆40Updated 2 years ago
• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass
  AmsiScanBufferBypass using D/Invoke
  ☆136Updated 4 years ago
• crummie5 / Freshycalls_PoC
  A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯
  ☆39Updated 4 years ago
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆139Updated 2 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆40Updated 4 years ago
• JohnWoodman / stealthInjector
  Injects shellcode into remote processes using direct syscalls
  ☆77Updated 4 years ago
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆90Updated 2 years ago
• 11philip22 / code-Injection
  Collection of shellcode injection and execution techniques
  ☆18Updated 2 months ago
• aaaddress1 / sakeInject
  Windows PE - TLS (Thread Local Storage) Injector in C/C++
  ☆106Updated 4 years ago
• shogunlab / Mochi
  Mochi is a proof-of-concept C++ loader that leverages the ChaiScript embedded scripting language to execute code.
  ☆101Updated 3 years ago
• w4fz5uck5 / LonelyALPC-BypassUAC
  Lonely x64 binary to Bypass Win10 UAC utilizing ALPC method with [command line]
  ☆32Updated 2 years ago
• asaurusrex / DoppelGate
  DoppelGate relies on reading ntdll on disk to grab syscall stubs, and patches these syscall stubs into desired functions to bypass Userla…
  ☆122Updated 3 years ago
• boku7 / x64win-DynamicNoNull-WinExec-PopCalc-Shellcode
  64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free
  ☆64Updated 2 years ago
• leoloobeek / COMRunner
  A simple COM server which provides a component to run shellcode
  ☆140Updated 5 years ago
• elddy / Windows-NTAPI-Injector
  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses
  ☆42Updated 4 years ago
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆64Updated 3 years ago
• xpn / ObjectOverloadingPOC
  ☆62Updated 3 years ago
• Maff1t / WindowsPermsPoC
  A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows
  ☆53Updated 4 years ago
• Disorden456 / Hellokitty-Ransomware-Source-Code
  Hellokitty Ransomware Source Code
  ☆17Updated 2 years ago