An example of Windows self-replicating malware.
☆11Jan 16, 2023Updated 3 years ago
Alternatives and similar repositories for Alcatraz
Users that are interested in Alcatraz are comparing it to the libraries listed below
Sorting:
- Offensive Assembly code snippets.☆13Jul 12, 2023Updated 2 years ago
- ☆12Sep 13, 2023Updated 2 years ago
- Reproducing the SkeletonKey malware.☆11Apr 6, 2024Updated last year
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- Sharing mouse and keyboard Between Windows and other OS.☆11Jul 6, 2020Updated 5 years ago
- Windows Explorer application written in assembly☆15Jun 15, 2023Updated 2 years ago
- Automated Persistence and Lateral Movement using GCP Patch Management☆16Aug 11, 2022Updated 3 years ago
- Build a Windows VM on VMWare ESXi, vCenter or vSphere from scratch 100% automated with Ansible.☆14Feb 10, 2025Updated last year
- Async rust support for the reverse-engineered Crowdstrike Falcon protocol between the Sensor and cloud services☆17Mar 10, 2023Updated 2 years ago
- Virtual File System supporting Different Functions (adding , copying from and to Hard Disk , Deleting Files and Folders)☆11Jul 13, 2017Updated 8 years ago
- An implementation of the Process Hollowing technique.☆16Dec 13, 2020Updated 5 years ago
- My software engineering notes.☆24Nov 12, 2025Updated 3 months ago
- Attacking the cleanup_module function of a kernel module☆57Jun 30, 2025Updated 8 months ago
- A repository filled with ideas to break/detect direct syscall techniques☆26Apr 21, 2022Updated 3 years ago
- Pure Go lang cryptor and shellcode injector☆20Feb 25, 2021Updated 5 years ago
- Easy encrypt/decrypt data with TPM☆25Feb 28, 2024Updated 2 years ago
- A PoC of a privilege escalation vulnerability in the Realtek rtkio64 Windows driver.☆20Jul 6, 2020Updated 5 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆51Apr 22, 2024Updated last year
- Hiding SSH public keys in SSH server using a kernel agent☆23Dec 24, 2020Updated 5 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆140Sep 12, 2022Updated 3 years ago
- search for a driver/dll module that has a wanted section bigger than the size of your image☆21Aug 14, 2021Updated 4 years ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆23Sep 15, 2023Updated 2 years ago
- Reflective DLL self-loading as a library☆21May 3, 2025Updated 9 months ago
- ProcExp Driver (Ab)use☆22Dec 28, 2022Updated 3 years ago
- A vulnerable driver exploited by me (BYOVD) that is capable of terminating several EDRs and antivirus software in the market, rendering t…☆105Dec 26, 2024Updated last year
- bring your own vulnerable driver☆113May 17, 2023Updated 2 years ago
- Get your data from the resource section manually, with no need for windows apis☆67Oct 22, 2024Updated last year
- Force kill a process using windows kernel driver☆25Apr 2, 2021Updated 4 years ago
- Get windows CPU temperature with WinRing0 driver and library☆25Jan 10, 2019Updated 7 years ago
- BlackHat scrapy for download all the pdf file☆30Jun 7, 2024Updated last year
- macOS dylib stager☆36Jan 22, 2025Updated last year
- `memory_pages` is a small library provinig a cross-platform API to request pages from kernel with certain premisions☆31Mar 25, 2023Updated 2 years ago
- Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL☆64Sep 12, 2022Updated 3 years ago
- Minifilter Callback Patching Proof-of-Concept☆74Oct 31, 2022Updated 3 years ago
- ☆30Aug 24, 2025Updated 6 months ago
- ☆32Aug 21, 2023Updated 2 years ago
- Utilities to handle Windows OS shutdown events☆30Feb 23, 2017Updated 9 years ago
- ☆118Aug 7, 2022Updated 3 years ago
- ☆31Oct 23, 2023Updated 2 years ago