Alternatives and similar repositories for Malware_learns

Users that are interested in Malware_learns are comparing it to the libraries listed below

• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆150Updated 3 years ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆86Updated 4 years ago
• MalwareApiLib / MalwareApiLibrary
  collection of apis used in malware development
  ☆230Updated 3 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆260Updated 3 years ago
• rad9800 / WTSRM
  WTSRM
  ☆216Updated 3 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆267Updated 2 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆196Updated 3 years ago
• VirtualAlllocEx / Direct-Syscalls-A-journey-from-high-to-low
  Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…
  ☆147Updated 2 years ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆294Updated 2 years ago
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆221Updated 3 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆158Updated 3 years ago
• LloydLabs / shellcode-plain-sight
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆209Updated 2 months ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆319Updated 2 years ago
• sensepost / mydumbedr
  ☆120Updated 2 years ago
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 3 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆235Updated last year
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆373Updated 3 years ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆389Updated last year
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆256Updated 3 years ago
• georgesotiriadis / MalwareDev
  ☆86Updated 3 years ago
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆171Updated 2 years ago
• lab52io / LeakedHandlesFinder
  Leaked Windows processes handles identification tool
  ☆290Updated 3 years ago
• sailay1996 / CdpSvcLPE
  Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)
  ☆254Updated 3 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆155Updated 2 years ago
• rad9800 / misc
  miscellaneous scripts and programs
  ☆274Updated last year
• dobin / antnium
  A C2 framework for initial access in Go
  ☆200Updated 3 years ago
• 0xRick / c2
  A basic c2 / agent.
  ☆118Updated 5 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆250Updated last year
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆363Updated 3 years ago