Alternatives and similar repositories for NotPetyaAgain

Users that are interested in NotPetyaAgain are comparing it to the libraries listed below

• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆27Updated 5 years ago
• CarlosG13 / Process-Hypnosis-Debugger-assisted-control-flow-hijack
  ☆34Updated last year
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆35Updated 2 years ago
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆101Updated 2 years ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆57Updated 2 years ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆52Updated 11 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆103Updated last year
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 2 years ago
• hasherezade / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆10Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆56Updated 9 months ago
• SpikySabra / Kernel-Cactus
  It's pointy and it hurts!
  ☆125Updated 2 years ago
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆63Updated 2 years ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆100Updated last year
• Reijaff / offensive_c
  ☆42Updated 2 years ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 6 months ago
• Idov31 / rustomware
  Simple ransomware written in Rust. Part of the building a rustomware blog post.
  ☆32Updated last year
• XaFF-XaFF / Kernel-Process-Hollowing
  Windows x64 kernel mode rootkit process hollowing POC.
  ☆189Updated last year
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆56Updated 9 months ago
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated 10 months ago
• maziland / StackBombing
  Next gen process injection technique
  ☆53Updated 4 years ago
• reveng007 / DareDevil
  Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10
  ☆37Updated 2 years ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆49Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• xalicex / Get-DLL-and-Function-Addresses
  GetModuleHandle (via PEB) and GetProcAddress (via EAT) like
  ☆32Updated 3 years ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆104Updated 2 years ago
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆137Updated 2 years ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆53Updated last year
• enkomio / BrokenFlow
  A simple PoC to invoke an encrypted shellcode by using an hidden call
  ☆116Updated 2 years ago
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆92Updated 4 years ago