paranoidninja / 0xdarkvortex-MalwareDevelopmentLinks
This repo will contain code snippets for blogs: Malware on Steroids written by me at https://scriptdotsh.com/index.php/category/malware-development/
☆200Updated 5 years ago
Alternatives and similar repositories for 0xdarkvortex-MalwareDevelopment
Users that are interested in 0xdarkvortex-MalwareDevelopment are comparing it to the libraries listed below
Sorting:
- This repo basically contains the code that was mentioned in the blogposts that was written by me at:☆99Updated 3 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆249Updated 5 years ago
- Exploit Development, backdooring PE, bypassing Anti-Virus (AV), assembly shellcoding☆144Updated 4 years ago
- a simple c++ reverse shell for windows☆113Updated 5 years ago
- ☆236Updated 8 years ago
- Shellcoding utilities☆223Updated 5 years ago
- PoC Thread Execution Hijacking for Win32 Code Injection☆178Updated last year
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆348Updated 5 years ago
- 2018 School project - PoC of malware code obfuscation in Word macros☆153Updated 4 years ago
- Dll that can be used for side loading and other attack vector.☆203Updated 5 years ago
- The program is designed to obfuscate the shellcode.☆203Updated 4 years ago
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆359Updated last year
- ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …☆217Updated 3 years ago
- Manipulating and Abusing Windows Access Tokens.☆287Updated 4 years ago
- Research on Anti-malware and other related security solutions☆264Updated 5 years ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆330Updated 2 years ago
- Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…☆458Updated 4 years ago
- ☆480Updated 2 years ago
- Universal Unhooking☆326Updated 7 years ago
- eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)☆465Updated 2 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆401Updated 5 years ago
- Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.☆204Updated 8 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆331Updated 5 years ago
- Custom C++ Reverse Shell POC | No AV Bypass Techniques or Tweaks Done | AVT Detection ratio: 2/61☆39Updated 8 years ago
- ☆257Updated 7 years ago
- Toolbox containing research notes & PoC code for weaponizing .NET's DLR☆525Updated 3 years ago
- Windows active user credential phishing tool☆283Updated 5 years ago
- Capcom Rootkit POC☆207Updated 8 years ago
- ☆138Updated last month
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆390Updated 6 years ago