Alternatives and similar repositories for BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero:

Users that are interested in BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero are comparing it to the libraries listed below

• inb1ts / CSSHide
  Encodes a payload within a generated mock-CSS file
  ☆59Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆63Updated 9 months ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆60Updated 8 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆73Updated 7 months ago
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆42Updated 6 months ago
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆28Updated last year
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 4 months ago
• ZERODETECTION / MSC_Dropper
  ☆146Updated 8 months ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆47Updated 10 months ago
• HulkOperator / AuthStager
  ☆54Updated 5 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆98Updated 3 months ago
• tehstoni / RustyKeys
  UAC Bypass using CMSTP in Rust
  ☆25Updated 3 months ago
• Karkas66 / CelestialSpark
  A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust
  ☆84Updated 11 months ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆79Updated last year
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆68Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆85Updated 9 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆54Updated 7 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆90Updated 9 months ago
• vulnableone / BypassX
  The Swiss army knife of evasion tool that bypasses AMSI, Applocker, and CLM mode simultaneously.
  ☆27Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆66Updated 5 months ago
• BlackShell256 / Null-AMSI
  Null-AMSI is an AMSI and ETW bypass that takes advantage of .NET types (.NET Reflection) to bypassing AV/EDR.
  ☆46Updated 2 weeks ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆54Updated 2 months ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆52Updated 9 months ago
• c2pain / RustPatchlessCLRLoader
  .NET assembly loader with patchless AMSI and ETW bypass in Rust
  ☆43Updated 5 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆92Updated 8 months ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆53Updated last month
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆64Updated 9 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆87Updated 3 weeks ago