Alternatives and similar repositories for ZeroAccess

Users that are interested in ZeroAccess are comparing it to the libraries listed below

• MalwareTech / FakeMBR
  TDL4 style rootkit to spoof read/write requests to master boot record
  ☆131Updated 7 years ago
• nyx0 / Rovnix
  Rovnix Bootkit
  ☆123Updated 10 years ago
• nyx0 / Carberp
  Carberp Banking Trojan
  ☆125Updated 10 years ago
• nyx0 / Tinba
  Tinba Banking Trojan
  ☆86Updated 10 years ago
• secrary / InfectPE
  InfectPE - Inject custom code into PE file [This project is not maintained anymore]
  ☆327Updated 8 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆382Updated 8 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆146Updated 11 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆65Updated 10 years ago
• hfiref0x / VMDE
  Source from VMDE paper, adapted to 2015
  ☆190Updated 8 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆296Updated last year
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆120Updated 8 years ago
• jozemberi / PE-Crypter
  Simple runtime crypter in C/C++.
  ☆166Updated 10 years ago
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆182Updated 8 years ago
• claudiouzelac / rootkit.com
  Mirror of users section of rootkit.com
  ☆301Updated 9 years ago
• CyberPoint / Ruxcon2016ETW
  Ruxcon2016 POC Code
  ☆141Updated 9 years ago
• abhisek / Pe-Loader-Sample
  Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique
  ☆158Updated 7 years ago
• Professor-plum / Reflective-Driver-Loader
  ☆407Updated 8 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆274Updated 7 years ago
• HexHive / malWASH
  ☆116Updated 9 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆185Updated 6 years ago
• Cr4sh / WindowsRegistryRootkit
  Kernel rootkit, that lives inside the Windows registry values data
  ☆502Updated 8 years ago
• edix / LoadDll
  Better version of RunDll with GUI. This program allows you to load DLLs on Windows. You can select how to load the DLL. By direct Entry P…
  ☆239Updated 10 years ago
• hasherezade / chimera_pe
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆229Updated 2 years ago
• kgretzky / python-x86-obfuscator
  This is a **WIP** tool that performs shellcode obfuscation in x86 instruction set.
  ☆247Updated 9 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆52Updated 9 years ago
• hryuk / Carberp
  ☆519Updated 7 years ago
• hackedteam / scout-win
  Scout backdoor for Windows
  ☆116Updated 10 years ago
• rrbranco / blackhat2012
  Blackhat 2012 Sample Codes
  ☆94Updated 9 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆190Updated 8 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆155Updated 2 years ago