Alternatives and similar repositories for Malware_learns

Users that are interested in Malware_learns are comparing it to the libraries listed below

• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆85Updated 3 years ago
• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆150Updated 3 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆157Updated 3 years ago
• rad9800 / WTSRM
  WTSRM
  ☆215Updated 3 years ago
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆217Updated 3 years ago
• LloydLabs / shellcode-plain-sight
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆208Updated last week
• MalwareApiLib / MalwareApiLibrary
  collection of apis used in malware development
  ☆229Updated 3 years ago
• rad9800 / misc
  miscellaneous scripts and programs
  ☆265Updated 9 months ago
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 3 years ago
• VirtualAlllocEx / Direct-Syscalls-A-journey-from-high-to-low
  Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…
  ☆144Updated 2 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆232Updated 11 months ago
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆170Updated 2 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆267Updated 2 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆360Updated 2 years ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆296Updated last year
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆315Updated 2 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆196Updated 2 years ago
• Maldev-Academy / Christmas
  ☆259Updated last year
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆261Updated 3 years ago
• jfmaes / AmsiHooker
  Hookers are cooler than patches.
  ☆170Updated 3 years ago
• MythicAgents / Athena
  ☆210Updated 2 weeks ago
• 0xRick / c2
  A basic c2 / agent.
  ☆119Updated 5 years ago
• sensepost / mydumbedr
  ☆120Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆336Updated last year
• rtecCyberSec / Packer_Development
  Slides & Code snippets for a workshop held @ x33fcon 2024
  ☆272Updated last year
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆371Updated 3 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆209Updated 2 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆150Updated 2 years ago