gelven4sec / NotPetyaAgain
PoC of a UEFI Petya ransomware
☆42Updated 2 years ago
Alternatives and similar repositories for NotPetyaAgain:
Users that are interested in NotPetyaAgain are comparing it to the libraries listed below
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆26Updated 5 years ago
- ☆34Updated last year
- a stage1 DLL loader with sleep obfuscation☆35Updated 2 years ago
- Piece of code to detect and remove hooks in IAT☆63Updated 2 years ago
- A PoC packer written in Rust!☆68Updated 3 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 3 years ago
- Bypass Malware Time Delays☆101Updated 2 years ago
- using the gpu to hide your payload☆57Updated 2 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆99Updated last year
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- simple user-mode Rootkit☆103Updated 2 years ago
- ☆42Updated 2 years ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆68Updated this week
- Nim process hollowing loader☆57Updated 8 months ago
- Next gen process injection technique☆52Updated 4 years ago
- Malware AV evasion via disable Windows Defender (Registry). C++☆35Updated 2 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆137Updated 2 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆37Updated 2 years ago
- A simple PoC to invoke an encrypted shellcode by using an hidden call☆116Updated 2 years ago
- Windows AppLocker Driver (appid.sys) LPE☆55Updated 8 months ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆48Updated 11 months ago
- Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users☆42Updated 2 years ago
- ☆16Updated 3 years ago
- Listing UDP connections with remote address without sniffing.☆29Updated last year
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 3 years ago
- Simple ransomware written in Rust. Part of the building a rustomware blog post.☆32Updated last year
- ☆37Updated last month
- ☆105Updated 9 months ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆14Updated 11 months ago