Alternatives and similar repositories for ZeroAccess:

Users that are interested in ZeroAccess are comparing it to the libraries listed below

• MalwareTech / FakeMBR
  TDL4 style rootkit to spoof read/write requests to master boot record
  ☆130Updated 7 years ago
• nyx0 / Rovnix
  Rovnix Bootkit
  ☆120Updated 9 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆362Updated 7 years ago
• nyx0 / Carberp
  Carberp Banking Trojan
  ☆110Updated 9 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆290Updated 6 months ago
• nyx0 / Tinba
  Tinba Banking Trojan
  ☆84Updated 9 years ago
• hasherezade / chimera_pe
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆219Updated last year
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆213Updated 4 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 6 years ago
• hackedteam / scout-win
  Scout backdoor for Windows
  ☆117Updated 9 years ago
• waleedassar / antidebug
  Collection Of Anti-Debugging Tricks
  ☆100Updated 9 years ago
• secrary / InfectPE
  InfectPE - Inject custom code into PE file [This project is not maintained anymore]
  ☆322Updated 7 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆144Updated 10 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆184Updated 7 years ago
• Professor-plum / Reflective-Driver-Loader
  ☆393Updated 7 years ago
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆184Updated 7 years ago
• HexHive / malWASH
  ☆113Updated 8 years ago
• dismantl / ImprovedReflectiveDLLInjection
  An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security
  ☆320Updated 7 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆82Updated 4 years ago
• hasherezade / IAT_patcher
  Persistent IAT hooking application - based on bearparser
  ☆250Updated 2 years ago
• Cn33liz / TpmInitUACBypass
  Bypassing User Account Control (UAC) using TpmInit.exe
  ☆127Updated 8 years ago
• hryuk / Carberp
  ☆518Updated 6 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆117Updated 7 years ago
• hfiref0x / VMDE
  Source from VMDE paper, adapted to 2015
  ☆180Updated 7 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆147Updated last year
• conix-security / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆358Updated 9 years ago
• MalwareTech / BasicHook
  x86 Inline hooking engine (using trampolines)
  ☆96Updated 10 years ago
• abhisek / Pe-Loader-Sample
  Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique
  ☆150Updated 6 years ago
• hegusung / AVSignSeek
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆314Updated 6 years ago
• Cr4sh / WindowsRegistryRootkit
  Kernel rootkit, that lives inside the Windows registry values data
  ☆490Updated 7 years ago