Alternatives and similar repositories for Malware_learns

Users that are interested in Malware_learns are comparing it to the libraries listed below

• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆149Updated 3 years ago
• rad9800 / WTSRM
  WTSRM
  ☆215Updated 3 years ago
• 0xRick / c2
  A basic c2 / agent.
  ☆119Updated 5 years ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆84Updated 3 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆157Updated 3 years ago
• LloydLabs / shellcode-plain-sight
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆206Updated 2 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆261Updated 3 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated 2 years ago
• cocomelonc / peekaboo
  Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.
  ☆260Updated 3 weeks ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆313Updated 2 years ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆296Updated last year
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• MalwareApiLib / MalwareApiLibrary
  collection of apis used in malware development
  ☆228Updated 3 years ago
• sensepost / mydumbedr
  ☆119Updated last year
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆170Updated 2 years ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆255Updated 3 years ago
• rad9800 / misc
  miscellaneous scripts and programs
  ☆258Updated 9 months ago
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 2 years ago
• VirtualAlllocEx / Direct-Syscalls-A-journey-from-high-to-low
  Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…
  ☆143Updated 2 years ago
• MythicAgents / Athena
  ☆210Updated 5 months ago
• jfmaes / AmsiHooker
  Hookers are cooler than patches.
  ☆170Updated 3 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆195Updated 2 years ago
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆371Updated 3 years ago
• Maldev-Academy / Christmas
  ☆261Updated last year
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• rtecCyberSec / Packer_Development
  Slides & Code snippets for a workshop held @ x33fcon 2024
  ☆271Updated last year
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆217Updated 3 years ago
• CodeXTF2 / maldev-links
  My collection of malware dev links
  ☆294Updated 4 months ago
• d1rkmtrr / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆148Updated 2 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆246Updated last year