hfiref0x / ZeroAccess
ZeroAccess v3 toolkit
☆164Updated 7 years ago
Alternatives and similar repositories for ZeroAccess:
Users that are interested in ZeroAccess are comparing it to the libraries listed below
- Carberp Banking Trojan☆110Updated 10 years ago
- Rovnix Bootkit☆120Updated 10 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆362Updated 7 years ago
- Tinba Banking Trojan☆84Updated 10 years ago
- Scout backdoor for Windows☆116Updated 9 years ago
- TDL4 style rootkit to spoof read/write requests to master boot record☆130Updated 7 years ago
- Kernel rootkit, that lives inside the Windows registry values data☆490Updated 7 years ago
- A tool to detect and crash Cuckoo Sandbox☆292Updated 7 months ago
- Pazuzu: Reflective DLL to run binaries from memory☆214Updated 4 years ago
- Windows XP 32-Bit Bootkit☆144Updated 10 years ago
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆323Updated 7 years ago
- KINS Banking Trojan☆62Updated 10 years ago
- ☆392Updated 8 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆219Updated last year
- An attempt at Process Doppelgänging☆184Updated 7 years ago
- Patching ROP-encoded shellcodes into PEs☆184Updated 7 years ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 7 years ago
- Inject code into a legitimate process☆143Updated 10 years ago
- zer0m0n driver for cuckoo sandbox☆358Updated 9 years ago
- DLL Injection tool to unlock guest VMs☆233Updated 12 years ago
- Collection Of Anti-Debugging Tricks☆99Updated 9 years ago
- Set of my small utils related to cryptography, encoding, decoding etc☆85Updated last year
- Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique☆151Updated 6 years ago
- Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw☆135Updated 7 years ago
- ☆518Updated 7 years ago
- A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…☆117Updated 7 years ago
- Bypassing User Account Control (UAC) using TpmInit.exe☆127Updated 8 years ago
- Passive UAC elevation using dll infection☆73Updated 10 years ago
- Mirror of users section of rootkit.com☆290Updated 8 years ago
- A slightly stripped down version of RID (an exercise in learning python C-Types...some of it is a little rushed/sloppy) and a stripped do…☆51Updated 12 years ago