gharty03 / Conti-Ransomware
Full source of the Conti Ransomware Including the missing Locker files from the original leak. I have fixed some of the errors intentionally introduced by the leaker to prevent the locker from being built. The Queue header file which implements a few linked list data structures that Conti uses for task scheduling in the Threadpool had several mi…
☆115Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Conti-Ransomware
- My collection of malware dev links☆244Updated 2 months ago
- Write-ups and proof of concepts of design and implementaion of various modern malwares.☆25Updated last year
- user-mode Rootkit☆98Updated 2 years ago
- Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.☆228Updated 3 weeks ago
- Cybersecurity research results. Simple C/C++ and Python implementations☆179Updated last week
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆370Updated 3 months ago
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆300Updated 3 months ago
- Performing Indirect Clean Syscalls☆483Updated last year
- ☆245Updated 10 months ago
- C++ self-Injecting dropper based on various EDR evasion techniques.☆341Updated 9 months ago
- simple Windows handle hijacker with a nod to Apxaey for inspiration☆201Updated last year
- ☆117Updated 8 months ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆164Updated 10 months ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆325Updated 5 months ago
- Bypass Malware Sandbox Evasion Ram check☆135Updated last year
- APT38 Tactic PoC for Stealing 0days from security professionals☆268Updated last year
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆434Updated last year
- ☆91Updated 2 years ago
- Remote Shellcode Injector☆204Updated last year
- Conti Locker source code☆184Updated 2 years ago
- Reflective DLL Injection Made Bella☆200Updated last month
- ☆64Updated 3 years ago
- Process Hollowing in C++ (x86 / x64) - Process PE image replacement☆127Updated last year
- Slides & Code snippets for a workshop held @ x33fcon 2024☆240Updated 5 months ago
- Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.☆383Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆561Updated last month
- A bunch of scripts and code i wrote.☆131Updated 2 weeks ago