Alternatives and similar repositories for ZeroAccess

Users that are interested in ZeroAccess are comparing it to the libraries listed below

• MalwareTech / FakeMBR
  TDL4 style rootkit to spoof read/write requests to master boot record
  ☆131Updated 7 years ago
• nyx0 / Carberp
  Carberp Banking Trojan
  ☆122Updated 10 years ago
• nyx0 / Rovnix
  Rovnix Bootkit
  ☆121Updated 10 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆378Updated 8 years ago
• nyx0 / Tinba
  Tinba Banking Trojan
  ☆87Updated 10 years ago
• hfiref0x / VMDE
  Source from VMDE paper, adapted to 2015
  ☆187Updated 7 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆296Updated last year
• secrary / InfectPE
  InfectPE - Inject custom code into PE file [This project is not maintained anymore]
  ☆325Updated 8 years ago
• claudiouzelac / rootkit.com
  Mirror of users section of rootkit.com
  ☆298Updated 8 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆145Updated 10 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆120Updated 8 years ago
• jozemberi / PE-Crypter
  Simple runtime crypter in C/C++.
  ☆164Updated 9 years ago
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆181Updated 7 years ago
• hryuk / Carberp
  ☆517Updated 7 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆63Updated 10 years ago
• Professor-plum / Reflective-Driver-Loader
  ☆402Updated 8 years ago
• CyberPoint / Ruxcon2016ETW
  Ruxcon2016 POC Code
  ☆140Updated 8 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆271Updated 7 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆189Updated 7 years ago
• m0n0ph1 / Win64-Rovnix-VBR-Bootkit
  Win64/Rovnix - Volume Boot Record Bootkit
  ☆176Updated 10 years ago
• abhisek / Pe-Loader-Sample
  Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique
  ☆153Updated 6 years ago
• Cr4sh / WindowsRegistryRootkit
  Kernel rootkit, that lives inside the Windows registry values data
  ☆496Updated 7 years ago
• waleedassar / antidebug
  Collection Of Anti-Debugging Tricks
  ☆101Updated 9 years ago
• MalwareTech / ZombifyProcess
  Inject code into a legitimate process
  ☆145Updated 10 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆184Updated 6 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆84Updated 4 years ago
• hasherezade / chimera_pe
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆223Updated 2 years ago
• atxsinn3r / amsiscanner
  A C/C++ implementation of Microsoft's Antimalware Scan Interface
  ☆182Updated 7 years ago
• ivildeed / vmw_vmx_overloader
  Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
  ☆139Updated 8 years ago
• MalwareTech / UACElevator
  Passive UAC elevation using dll infection
  ☆75Updated 10 years ago