petikvx / OfficeMalwaresLinks
Sources Codes of many Office Malwares
☆17Updated 3 years ago
Alternatives and similar repositories for OfficeMalwares
Users that are interested in OfficeMalwares are comparing it to the libraries listed below
Sorting:
- Help deobfuscate VBScript☆16Updated 3 years ago
- Ransoblin (Ransomware Bokoblin)☆18Updated 5 years ago
- Tricard - Malware Sandbox Fingerprinting☆20Updated last year
- A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)☆16Updated 2 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆22Updated 4 years ago
- AMSI detection PoC☆31Updated 5 years ago
- Loading and executing shellcode in C# without PInvoke.☆22Updated 3 years ago
- Exactly what it sounds like, which is something rad☆22Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 4 years ago
- Malware development: persistence - part 1: startup folder registry keys. C++ implementation☆12Updated 3 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 3 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 3 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 3 years ago
- A collection of my presentation materials.☆17Updated last year
- ☆15Updated 2 years ago
- Malware campaigns and APTs research by BlackArrow☆19Updated 5 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆18Updated 2 years ago
- This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.☆15Updated 3 years ago
- Collection of generic YARA rules☆16Updated 2 months ago
- ☆18Updated 5 years ago
- AppXSVC Service race condition - privilege escalation☆29Updated 6 years ago
- x64 Windows package of the shellcode2exe tool☆14Updated 4 years ago
- ☆12Updated 3 years ago
- just manipulatin these here tokens yes sir nothing weird☆22Updated 3 years ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- ☆24Updated 3 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 3 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated 2 years ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- ☆24Updated 4 years ago