m4ul3r / malware
malware written for educational purposes
☆66Updated 5 months ago
Alternatives and similar repositories for malware:
Users that are interested in malware are comparing it to the libraries listed below
- Indirect syscalls + DInvoke made simple.☆90Updated 3 months ago
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆80Updated 10 months ago
- Sleep obfuscation for shellcode implants and their reflective shit☆51Updated last year
- Threadless shellcode injection tool☆63Updated 8 months ago
- ☆42Updated 2 years ago
- PoC XLL builder in Python/Nim☆46Updated 2 years ago
- NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.☆27Updated last year
- ☆48Updated last year
- BOF to decrypt Signal Desktop chat logs☆65Updated 2 months ago
- Section-based payload obfuscation technique for x64☆59Updated 8 months ago
- ☆52Updated 3 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆76Updated last month
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆61Updated last year
- Sample Rust Hooking Engine☆36Updated last year
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆63Updated 3 months ago
- ☆54Updated 5 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆74Updated 8 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆70Updated 11 months ago
- Impersonate Tokens using only NTAPI functions☆61Updated 2 weeks ago
- ☆54Updated 2 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆85Updated 3 months ago
- ☆61Updated 10 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆60Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆113Updated 2 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆72Updated last week
- ☆98Updated last year
- ☆97Updated 7 months ago
- ☆127Updated 7 months ago
- Rust template/library for implementing your own COFF loader☆50Updated 2 months ago
- Construct the payload at runtime using an array of offsets☆63Updated 10 months ago