jas502n / DriveLife-PsTrojan
TrojanDropper/PS.Maloader.d
☆12Updated 3 years ago
Alternatives and similar repositories for DriveLife-PsTrojan:
Users that are interested in DriveLife-PsTrojan are comparing it to the libraries listed below
- SyscallLoader☆10Updated 3 years ago
- inject shellcode into remote process via message hook☆15Updated 4 years ago
- ☆11Updated 2 years ago
- Windows Persistence Collection☆12Updated 3 years ago
- Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)☆11Updated 2 years ago
- ☆15Updated 4 years ago
- 寻找可注入进程☆13Updated 4 years ago
- Files for http://deniable.org/windows/windows-callbacks☆23Updated 4 years ago
- works but not work, cao!☆24Updated 3 years ago
- Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.☆11Updated 4 years ago
- Simple .NET profiler shellcode loader☆10Updated 2 years ago
- Use current thread token to execute command☆15Updated 3 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated 2 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆12Updated 2 years ago
- ☆19Updated 3 years ago
- Ntdll Unhooking POC☆19Updated 2 years ago
- Like Hell's Gate but more EGG :)☆20Updated 2 years ago
- ☆14Updated 3 years ago
- A tool is used to infected a shellcode to PE file, the shellcode is packed at compile time and unpacked at runtime☆13Updated 4 years ago
- C# 编写的用于 Dropbox 文件上传☆20Updated 3 years ago
- 从入门到放弃的产物,学习过程中用python实现的一个单点c2基本功能☆11Updated 4 years ago
- ☆18Updated 3 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆22Updated 4 years ago
- VM escape (QEMU, VirtualBox, VMware)☆17Updated 2 years ago
- Proofs-Of-360Security Sandbox Escape☆10Updated 2 years ago
- VEH hook☆10Updated 2 years ago