Alternatives and similar repositories for NotPetyaAgain

Users that are interested in NotPetyaAgain are comparing it to the libraries listed below

• NUL0x4C / GP
  using the gpu to hide your payload
  ☆58Updated 2 years ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆105Updated 2 years ago
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆101Updated 2 years ago
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆27Updated 5 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆71Updated 4 years ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆36Updated last year
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆63Updated 3 years ago
• SpikySabra / Kernel-Cactus
  It's pointy and it hurts!
  ☆126Updated 2 years ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆103Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆60Updated 10 months ago
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆35Updated 2 years ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆52Updated last year
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆137Updated 2 years ago
• maziland / StackBombing
  Next gen process injection technique
  ☆53Updated 4 years ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆56Updated 10 months ago
• oomar400 / Malware-Development
  Write-ups and proof of concepts of design and implementaion of various modern malwares.
  ☆28Updated 2 years ago
• APT64 / KernelAVKiller
  Antivirus killer using ring-0 kernel driver. Antivirus processes will automatically close while the killer is running.
  ☆6Updated 2 years ago
• XaFF-XaFF / Kernel-Process-Hollowing
  Windows x64 kernel mode rootkit process hollowing POC.
  ☆191Updated last year
• cyberark / malware-research
  ☆38Updated 3 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆105Updated 2 years ago
• Reijaff / offensive_c
  ☆42Updated 2 years ago
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• enkomio / BrokenFlow
  A simple PoC to invoke an encrypted shellcode by using an hidden call
  ☆116Updated 2 years ago
• Idov31 / rustomware
  Simple ransomware written in Rust. Part of the building a rustomware blog post.
  ☆32Updated last year
• xalicex / Get-DLL-and-Function-Addresses
  GetModuleHandle (via PEB) and GetProcAddress (via EAT) like
  ☆31Updated 3 years ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆53Updated last year
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆92Updated 4 years ago
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆45Updated last year
• rad9800 / talks
  ☆55Updated last month