Alternatives and similar repositories for Dropper

Users that are interested in Dropper are comparing it to the libraries listed below

• vvelitkn / Evasion-Escaper
  Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…
  ☆106Updated 4 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 11 months ago
• DGRonpa / Process_Injection
  ☆28Updated 3 years ago
• accidentalrebel / shcode2exe
  Compile shellcode into an exe file from Windows or Linux.
  ☆68Updated 2 weeks ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆53Updated last year
• t0-retooling / defender-recon24
  ☆52Updated 8 months ago
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆61Updated last year
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆83Updated last year
• zRapha / FAME
  Framework for Adversarial Malware Evaluation.
  ☆34Updated 2 months ago
• scrt / avdebugger
  ☆96Updated 3 years ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆93Updated this week
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆100Updated last year
• RedTeamOperations / VEH-PoC
  ☆114Updated 2 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆69Updated last year
• FarghlyMal / Config-Extractors
  ☆27Updated 7 months ago
• dobin / avred-server
  The AMSI server for Avred
  ☆29Updated last year
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆38Updated 3 years ago
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆47Updated last year
• waldo-irc / MalMemDetect
  Detect strange memory regions and DLLs
  ☆184Updated 3 years ago
• PwCUK-CTO / iis-helper-plugin
  IDA Pro plugin to aid with the analysis of native IIS modules
  ☆18Updated 10 months ago
• boku7 / x64win-DynamicNoNull-WinExec-PopCalc-Shellcode
  64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free
  ☆62Updated 2 years ago
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆64Updated 3 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop
  OFFZONE 2024 Malware Persistence workshop
  ☆19Updated 6 months ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆32Updated last year
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆138Updated 2 years ago
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆42Updated 9 years ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated last year
• NVISOsecurity / Interceptor
  Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space
  ☆123Updated 2 years ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆46Updated 2 years ago