Alternatives and similar repositories for ZeroAccess

Users that are interested in ZeroAccess are comparing it to the libraries listed below

• MalwareTech / FakeMBR
  TDL4 style rootkit to spoof read/write requests to master boot record
  ☆131Updated 7 years ago
• nyx0 / Rovnix
  Rovnix Bootkit
  ☆121Updated 10 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆379Updated 8 years ago
• nyx0 / Carberp
  Carberp Banking Trojan
  ☆120Updated 10 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆295Updated last year
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆181Updated 7 years ago
• nyx0 / Tinba
  Tinba Banking Trojan
  ☆87Updated 10 years ago
• secrary / InfectPE
  InfectPE - Inject custom code into PE file [This project is not maintained anymore]
  ☆325Updated 8 years ago
• claudiouzelac / rootkit.com
  Mirror of users section of rootkit.com
  ☆298Updated 8 years ago
• hfiref0x / VMDE
  Source from VMDE paper, adapted to 2015
  ☆186Updated 7 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆119Updated 8 years ago
• Professor-plum / Reflective-Driver-Loader
  ☆402Updated 8 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆184Updated 6 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆145Updated 10 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆189Updated 7 years ago
• abhisek / Pe-Loader-Sample
  Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique
  ☆153Updated 6 years ago
• jozemberi / PE-Crypter
  Simple runtime crypter in C/C++.
  ☆164Updated 9 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆84Updated 4 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆271Updated 7 years ago
• Cr4sh / WindowsRegistryRootkit
  Kernel rootkit, that lives inside the Windows registry values data
  ☆497Updated 7 years ago
• CyberPoint / Ruxcon2016ETW
  Ruxcon2016 POC Code
  ☆140Updated 8 years ago
• hasherezade / chimera_pe
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆223Updated 2 years ago
• rrbranco / blackhat2012
  Blackhat 2012 Sample Codes
  ☆93Updated 9 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆63Updated 10 years ago
• HexHive / malWASH
  ☆115Updated 8 years ago
• hryuk / Carberp
  ☆517Updated 7 years ago
• kgretzky / python-x86-obfuscator
  This is a **WIP** tool that performs shellcode obfuscation in x86 instruction set.
  ☆242Updated 9 years ago
• waleedassar / antidebug
  Collection Of Anti-Debugging Tricks
  ☆100Updated 9 years ago
• hackedteam / scout-win
  Scout backdoor for Windows
  ☆117Updated 10 years ago
• ivildeed / vmw_vmx_overloader
  Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
  ☆139Updated 8 years ago