freakick22 / SpyAILinks
Intelligent Malware that takes screenshots for entire monitors and exfiltrate them through Trusted Channel Slack to the C2 server that's using GPT-4 Vision to analyze them and construct daily activity — frame by frame
☆29Updated this week
Alternatives and similar repositories for SpyAI
Users that are interested in SpyAI are comparing it to the libraries listed below
Sorting:
- ☆55Updated last month
- Rule Engine for Dynamic Malware Analysis and Research☆23Updated last month
- ☆31Updated 3 months ago
- ☆18Updated 2 weeks ago
- ☆18Updated last week
- Windows Shell Link (LNK) Proof of Concept☆14Updated this week
- BYOVD Technique Example using viragt64 driver☆40Updated 10 months ago
- ☆55Updated 7 months ago
- Windows AppLocker Driver (appid.sys) LPE☆60Updated 10 months ago
- Lena's scripts/code/resources for malware analysis☆27Updated 11 months ago
- ☆16Updated last month
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆57Updated last year
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆63Updated last year
- POC of GITHUB simple C2 in rust☆53Updated 4 months ago
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated last year
- Bypasses AMSI protection through remote memory patching and parsing technique.☆43Updated 3 weeks ago
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆29Updated 4 months ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆39Updated 7 months ago
- ☆34Updated 2 months ago
- Vibe Malware Triage - MCP server for static PE analysis.☆53Updated 2 weeks ago
- ☆22Updated 2 months ago
- Make an Linux Kernel rootkit visible again.☆52Updated 3 months ago
- Early cascade injection PoC based on Outflanks blog post written in Rust☆54Updated 4 months ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆74Updated 5 months ago
- Situational Awareness script to identify how and where to run implants☆50Updated 6 months ago
- Folder Or File Delete to Get System Shell on Current Session Desktop☆39Updated 4 months ago
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Updated 2 years ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 3 months ago
- ☆30Updated 6 months ago
- Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…☆43Updated last week