gelven4sec / NotPetyaAgainLinks
PoC of a UEFI Petya ransomware
☆44Updated 2 years ago
Alternatives and similar repositories for NotPetyaAgain
Users that are interested in NotPetyaAgain are comparing it to the libraries listed below
Sorting:
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆27Updated 5 years ago
- using the gpu to hide your payload☆59Updated 2 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 4 years ago
- ☆37Updated 3 months ago
- Piece of code to detect and remove hooks in IAT☆64Updated 3 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆105Updated 2 years ago
- Simple ransomware written in Rust. Part of the building a rustomware blog post.☆32Updated last year
- ☆36Updated last year
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆10Updated last year
- ☆73Updated last year
- Malware AV evasion via disable Windows Defender (Registry). C++☆35Updated 3 years ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- Repo containing my public talks☆23Updated 2 years ago
- Bypass Malware Time Delays☆102Updated 2 years ago
- a stage1 DLL loader with sleep obfuscation☆37Updated 2 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆138Updated 2 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆31Updated 3 years ago
- Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users☆42Updated 2 years ago
- ☆42Updated 2 years ago
- POC for frustrating/defeating Malware Analysts☆154Updated 3 years ago
- Next gen process injection technique☆54Updated 4 years ago
- Nim process hollowing loader☆57Updated 10 months ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆14Updated last year
- Red Team Operation's Defense Evasion Technique.☆53Updated last year
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆112Updated 9 months ago
- simple user-mode Rootkit☆104Updated 2 years ago
- ☆47Updated last year
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆102Updated last year
- My adventures in learning about different userland malware techniques, such as syscalls, injection, unhooking or sandbox evasion.☆75Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆47Updated last year