Alternatives and similar repositories for Malware-Development

Users that are interested in Malware-Development are comparing it to the libraries listed below

• Offensive-Panda / DefenseEvasionTechniques
  This comprehensive and central repository is designed for cybersecurity enthusiasts, researchers, and professionals seeking to stay ahead…
  ☆120Updated last month
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆165Updated 4 months ago
• ZeroMemoryEx / CVE-2025-26125
  (0day) Local Privilege Escalation in IObit Malware Fighter
  ☆142Updated 3 months ago
• XaFF-XaFF / CaveCarver
  CaveCarver - PE backdooring tool which utilizes and automates code cave technique
  ☆227Updated 2 years ago
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆156Updated 4 months ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆141Updated 8 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆85Updated last month
• ZeroMemoryEx / Bypass-Sandbox-Evasion
  Bypass Malware Sandbox Evasion Ram check
  ☆137Updated 2 years ago
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆169Updated last year
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆191Updated last year
• eversinc33 / MalwareAdventurez
  My adventures in learning about different userland malware techniques, such as syscalls, injection, unhooking or sandbox evasion.
  ☆75Updated last year
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆180Updated last year
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆161Updated 7 months ago
• Maldev-Academy / Christmas
  ☆260Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆72Updated 2 months ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆53Updated last year
• TheMalwareGuardian / Awesome-Bootkits-Rootkits-Development
  A curated compilation of extensive resources dedicated to bootkit and rootkit development.
  ☆66Updated 2 months ago
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆121Updated 8 months ago
• lem0nSec / KBlast
  Windows Kernel Offensive Toolset
  ☆124Updated 2 weeks ago
• VirtualAlllocEx / Direct-Syscalls-vs-Indirect-Syscalls
  The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls
  ☆197Updated last year
• ph4nt0mbyt3 / Darkside
  C# AV/EDR Killer using less-known driver (BYOVD)
  ☆178Updated last year
• dr4k0nia / NixImports
  A .NET malware loader, using API-Hashing to evade static analysis
  ☆208Updated 2 years ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆90Updated last year
• ZeroMemoryEx / Tokenizer
  Kernel Mode Driver for Elevating Process Privileges
  ☆132Updated 2 years ago
• kymb0 / Malware_learns
  ☆133Updated 2 years ago
• florylsk / NtRemoteLoad
  Remote Shellcode Injector
  ☆217Updated last year
• captain-woof / malware-study
  My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to any…
  ☆73Updated last month