Alternatives and similar repositories for ZeroAccess

Users that are interested in ZeroAccess are comparing it to the libraries listed below

• MalwareTech / FakeMBR
  TDL4 style rootkit to spoof read/write requests to master boot record
  ☆131Updated 7 years ago
• nyx0 / Rovnix
  Rovnix Bootkit
  ☆123Updated 10 years ago
• nyx0 / Tinba
  Tinba Banking Trojan
  ☆87Updated 10 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆381Updated 8 years ago
• nyx0 / Carberp
  Carberp Banking Trojan
  ☆124Updated 10 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆145Updated 10 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆295Updated last year
• hfiref0x / VMDE
  Source from VMDE paper, adapted to 2015
  ☆189Updated 7 years ago
• secrary / InfectPE
  InfectPE - Inject custom code into PE file [This project is not maintained anymore]
  ☆327Updated 8 years ago
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆181Updated 7 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆119Updated 8 years ago
• Professor-plum / Reflective-Driver-Loader
  ☆405Updated 8 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆65Updated 10 years ago
• abhisek / Pe-Loader-Sample
  Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique
  ☆158Updated 7 years ago
• hryuk / Carberp
  ☆518Updated 7 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆184Updated 6 years ago
• waleedassar / antidebug
  Collection Of Anti-Debugging Tricks
  ☆101Updated 9 years ago
• Cr4sh / WindowsRegistryRootkit
  Kernel rootkit, that lives inside the Windows registry values data
  ☆502Updated 8 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆190Updated 8 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆85Updated 5 years ago
• hasherezade / chimera_pe
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆227Updated 2 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆273Updated 7 years ago
• hackedteam / scout-win
  Scout backdoor for Windows
  ☆116Updated 10 years ago
• claudiouzelac / rootkit.com
  Mirror of users section of rootkit.com
  ☆300Updated 9 years ago
• rrbranco / blackhat2012
  Blackhat 2012 Sample Codes
  ☆93Updated 9 years ago
• ivildeed / vmw_vmx_overloader
  Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
  ☆140Updated 8 years ago
• MalwareTech / UACElevator
  Passive UAC elevation using dll infection
  ☆75Updated 11 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆99Updated 4 years ago
• edix / LoadDll
  Better version of RunDll with GUI. This program allows you to load DLLs on Windows. You can select how to load the DLL. By direct Entry P…
  ☆238Updated 10 years ago
• jozemberi / PE-Crypter
  Simple runtime crypter in C/C++.
  ☆166Updated 10 years ago