hackerhouse-opensource / MarbleLinks
The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
☆291Updated last year
Alternatives and similar repositories for Marble
Users that are interested in Marble are comparing it to the libraries listed below
Sorting:
- ☆354Updated last year
- Analyse your malware to surgically obfuscate it☆469Updated last week
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆283Updated last month
- Unorthodox and stealthy way to inject a DLL into the explorer using icons☆319Updated 2 weeks ago
- Performing Indirect Clean Syscalls☆550Updated 2 years ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆378Updated 2 weeks ago
- Patching "signtool.exe" to accept expired certificates for code-signing.☆282Updated 10 months ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆260Updated 11 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆684Updated 2 months ago
- ☆188Updated last year
- A delicious, but malicious SSL-VPN server 🌮☆229Updated 6 months ago
- AV/EDR Lab environment setup references to help in Malware development☆385Updated 3 months ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆378Updated 10 months ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆175Updated last year
- Offensive Lua.☆184Updated last year
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆308Updated 9 months ago
- My collection of malware dev links☆270Updated 9 months ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆165Updated 2 months ago
- Simulate the behavior of AV/EDR for malware development training.☆528Updated last year
- ☆303Updated 6 months ago
- Self-spreading Java malware targeting Minecraft servers. Infected servers are capable of scanning for other vulnerable servers, encryptin…☆119Updated 5 months ago
- ☆136Updated 2 years ago
- Generate an obfuscated DLL that will disable AMSI & ETW☆325Updated 10 months ago
- Tool designed to exfiltrate OneDrive Business OCR Data☆114Updated 4 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆476Updated last year
- Hide shellcode by shuffling bytes into a random array and reconstruct at runtime☆192Updated 2 months ago
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆311Updated last year
- ☆277Updated last year
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆520Updated 11 months ago
- Win32 Shellcode CheatSheet: Your visual guide for crafting and understanding shellcode. Ideal for malware, and exploit developers☆59Updated 9 months ago