gharty03 / Conti-Ransomware
Full source of the Conti Ransomware Including the missing Locker files from the original leak. I have fixed some of the errors intentionally introduced by the leaker to prevent the locker from being built. The Queue header file which implements a few linked list data structures that Conti uses for task scheduling in the Threadpool had several mi…
☆141Updated last year
Alternatives and similar repositories for Conti-Ransomware:
Users that are interested in Conti-Ransomware are comparing it to the libraries listed below
- My collection of malware dev links☆265Updated 8 months ago
- An advanced Ransomware written in C++ and fully customizable☆88Updated last year
- Conti Locker source code☆191Updated 3 years ago
- The LockBit builder files☆111Updated last year
- Performing Indirect Clean Syscalls☆541Updated 2 years ago
- ☆122Updated last year
- Analyse your malware to surgically obfuscate it☆465Updated 2 months ago
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆310Updated 8 months ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆377Updated 9 months ago
- Write-ups and proof of concepts of design and implementaion of various modern malwares.☆28Updated 2 years ago
- Cybersecurity research results. Simple C/C++ and Python implementations☆222Updated last week
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆160Updated last month
- Bypass Malware Sandbox Evasion Ram check☆137Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆675Updated last month
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆338Updated 2 months ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆448Updated last year
- Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.☆243Updated 6 months ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆187Updated last year
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆272Updated 3 weeks ago
- C++ self-Injecting dropper based on various EDR evasion techniques.☆374Updated last year
- Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.☆397Updated last year
- Fileless attack with persistence☆352Updated 5 months ago
- ☆324Updated last year
- ☆256Updated last year
- Generate an obfuscated DLL that will disable AMSI & ETW☆322Updated 9 months ago
- ☆351Updated last year
- simple user-mode Rootkit☆103Updated 2 years ago
- Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…☆53Updated last month
- Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…☆219Updated 6 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆473Updated last year