petikvx / MSIL-Malwares

Related projects ⓘ

Alternatives and complementary repositories for MSIL-Malwares

• petikvx / malwares-analysis-tools
  ☆15Updated 2 years ago
• cocomelonc / 2022-04-20-malware-pers-1
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Updated 2 years ago
• petikvx / MSIL-Ransom-Part-01
  Source Code of MSIL Ransom
  ☆13Updated last year
• S12cybersecurity / PrivilegeEscalationClass
  C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin
  ☆18Updated last year
• ELMERIKH / Beryl
  Payload Dropper with Persistance & Privesc & UAC bypass 🐱‍👤
  ☆12Updated 7 months ago
• cocomelonc / 2022-01-24-malware-injection-15
  Process injection via KernelCallbackTable
  ☆14Updated 2 years ago
• VoidSec / ida-helpers
  Collection of IDA helpers
  ☆15Updated 2 years ago
• plackyhacker / PowerGhost
  A custom run space to bypass AMSI and Constrained Language mode in PowerShell.
  ☆18Updated last year
• 11philip22 / CodeInjection
  Collection of shellcode injection and execution techniques
  ☆16Updated 3 years ago
• splexas / TrampHooker
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆20Updated last month
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year
• LethalSnake1337 / PE-Loader-exercise
  A simple PE loader.
  ☆25Updated last year
• 0xflagplz / _x64_Loader
  Utilizing Alternative Shellcode Execution Via Callbacks
  ☆13Updated 11 months ago
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆23Updated 4 months ago
• Leo4j / Invoke-RunAsSystem
  A simple script to elevate current session to SYSTEM (needs to be run as Administrator)
  ☆11Updated last week
• cocomelonc / 2022-05-02-malware-pers-3
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13Updated 2 years ago
• MzHmO / USB-Monitor
  USB Monitor is a simple C# program that uses WMI to track information about newly connected and disconnected USB devices
  ☆21Updated 11 months ago
• reveng007 / reveng_loader
  C# loader capable of running stage-1 from remote url, file path as well as file share
  ☆14Updated last year
• arsium / BypassGetModuleBaseAddressAndGetExportAddress
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆19Updated 2 years ago
• D4rthMaulCop / DarthNetLoader
  ☆14Updated last year
• 1captainnemo1 / DLLREVERSESHELL
  A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…
  ☆35Updated 5 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆15Updated 6 years ago
• cocomelonc / 2022-04-13-malware-injection-19
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆9Updated 2 years ago
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆11Updated 2 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆22Updated 2 years ago
• shaddy43 / AES_Shellcode_Encryptor
  This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…
  ☆15Updated 2 years ago
• carlosmiei / bypassAntivirus2020
  How to bypass antivirus 2020
  ☆7Updated 4 years ago