hfiref0x / ZeroAccessLinks
ZeroAccess v3 toolkit
☆164Updated 7 years ago
Alternatives and similar repositories for ZeroAccess
Users that are interested in ZeroAccess are comparing it to the libraries listed below
Sorting:
- Carberp Banking Trojan☆114Updated 10 years ago
- TDL4 style rootkit to spoof read/write requests to master boot record☆131Updated 7 years ago
- Tinba Banking Trojan☆85Updated 10 years ago
- A tool to detect and crash Cuckoo Sandbox☆295Updated 10 months ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆368Updated 8 years ago
- Rovnix Bootkit☆118Updated 10 years ago
- ☆515Updated 7 years ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 7 years ago
- Kernel rootkit, that lives inside the Windows registry values data☆496Updated 7 years ago
- ☆398Updated 8 years ago
- Source from VMDE paper, adapted to 2015☆182Updated 7 years ago
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆324Updated 8 years ago
- Patching ROP-encoded shellcodes into PEs☆186Updated 7 years ago
- KINS Banking Trojan☆61Updated 10 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆224Updated 2 years ago
- A library for intercepting native functions by hooking KiFastSystemCall☆73Updated 5 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆216Updated 4 years ago
- Windows XP 32-Bit Bootkit☆145Updated 10 years ago
- Collection Of Anti-Debugging Tricks☆99Updated 9 years ago
- An attempt at Process Doppelgänging☆181Updated 7 years ago
- Scout backdoor for Windows☆115Updated 9 years ago
- A General Purpose DLL & Code Injection Utility☆154Updated 7 years ago
- Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw☆136Updated 8 years ago
- zer0m0n driver for cuckoo sandbox☆362Updated 10 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆324Updated 7 years ago
- Bypassing User Account Control (UAC) using TpmInit.exe☆128Updated 8 years ago
- Ruxcon2016 POC Code☆139Updated 8 years ago
- A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…☆118Updated 7 years ago
- windows syscall table from xp ~ 10 rs4☆353Updated 6 years ago
- Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique☆152Updated 6 years ago