Alternatives and similar repositories for Malware_learns

Users that are interested in Malware_learns are comparing it to the libraries listed below

• tbhaxor / WinAPI-RedBlue
  Source code of exploiting windows API for red teaming series
  ☆151Updated 2 years ago
• rad9800 / WTSRM
  WTSRM
  ☆214Updated 3 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated 2 years ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆83Updated 3 years ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆306Updated 2 years ago
• cocomelonc / peekaboo
  Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.
  ☆254Updated 10 months ago
• LloydLabs / shellcode-plain-sight
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆204Updated 2 years ago
• rad9800 / misc
  miscellaneous scripts and programs
  ☆253Updated 7 months ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆291Updated last year
• VirtualAlllocEx / Direct-Syscalls-A-journey-from-high-to-low
  Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…
  ☆137Updated 2 years ago
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 2 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆156Updated 3 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• tasox / CSharp_Process_Injection
  ☆72Updated last year
• MythicAgents / Athena
  ☆208Updated 3 months ago
• thefLink / DeepSleep
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆366Updated 3 years ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆382Updated last year
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆148Updated 2 years ago
• MalwareApiLib / MalwareApiLibrary
  collection of apis used in malware development
  ☆227Updated 3 years ago
• rtecCyberSec / Packer_Development
  Slides & Code snippets for a workshop held @ x33fcon 2024
  ☆263Updated last year
• jfmaes / AmsiHooker
  Hookers are cooler than patches.
  ☆170Updated 3 years ago
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆358Updated 2 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆194Updated 2 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆258Updated 2 years ago
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆169Updated 2 years ago
• huntandhackett / concealed_code_execution
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆217Updated 3 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆246Updated last year
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆257Updated 3 years ago
• 0xRick / c2
  A basic c2 / agent.
  ☆120Updated 5 years ago