redcode-labs/BMJ

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/redcode-labs/BMJ)

redcode-labs / BMJ

Code snippets for bare-metal malware development

☆98

Alternatives and similar repositories for BMJ

Users that are interested in BMJ are comparing it to the libraries listed below

Sorting:

redcode-labs / poXSSon
View on GitHub
A framework for easy payloads development and deployment, collection of customizable XSS payloads
☆26Feb 20, 2022Updated 4 years ago
ahhh / presentations
View on GitHub
various slides and presentations I've worked on
☆19Mar 21, 2025Updated 11 months ago
ulexec / SHELF-Loading
View on GitHub
Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
☆28Sep 11, 2021Updated 4 years ago
cocomelonc / 2022-04-02-malware-injection-18
View on GitHub
Find kernel32 base and API addresses. Simple C++ implementation
☆23Apr 7, 2022Updated 3 years ago
GetRektBoy724 / SysGate
View on GitHub
One gate to all syscalls!
☆23Mar 12, 2022Updated 3 years ago
tmpout / awesome-elf
View on GitHub
☆667Mar 25, 2025Updated 11 months ago
chbGSmCm / bof-deez-nuts
View on GitHub
Classic Bofa adapted to CobaltStrike.
☆11Oct 4, 2022Updated 3 years ago
TheWover / ModuleMonitor
View on GitHub
Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…
☆42May 9, 2019Updated 6 years ago
BOFs / BOFs
View on GitHub
Beacon Object Files.
☆36Feb 26, 2024Updated 2 years ago
guitmz / nim-cephei
View on GitHub
Probably the first ELF binary infector ever created in Nim.
☆28Jun 23, 2020Updated 5 years ago
jordanpotti / opsec-aggressor
View on GitHub
Aggressor script that gets the latest commands from CobaltStrikes web site and creates an aggressor script based on tool options.
☆22Oct 6, 2021Updated 4 years ago
redcode-labs / Solaris
View on GitHub
A local LKM rootkit loader/dropper that lists available security mechanisms
☆52Sep 4, 2021Updated 4 years ago
perturbed-platypus / LinooxMalware
View on GitHub
☆28Aug 10, 2019Updated 6 years ago
c3rb3ru5d3d53c / mwdb-feeds
View on GitHub
A Modular MWDB Utility to Collect Fresh Malware Samples
☆34May 17, 2021Updated 4 years ago
thefLink / DeepSleep
View on GitHub
A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
☆374May 24, 2022Updated 3 years ago
D00MFist / Dylib-Hijack-Scanner
View on GitHub
JavaScript for Automation (JXA) version of Patrick Wardle's tool that searches applications for dylib hijacking opportunities
☆22Aug 6, 2019Updated 6 years ago
GetRektBoy724 / Breaking-Detecting-Direct-Syscall-Techniques
View on GitHub
A repository filled with ideas to break/detect direct syscall techniques
☆26Apr 21, 2022Updated 3 years ago
ail-project / Similarius
View on GitHub
Similarius is a Python library to compare web page and evaluate the level of similarity.
☆23Feb 11, 2026Updated 2 weeks ago
informed-governance-project / NISINP
View on GitHub
Incident Notification Platform by @NC3-LU
☆11Updated this week
Mr-Un1k0d3r / WindowsDllsExport
View on GitHub
A list of all the DLLs export in C:\windows\system32\
☆221Dec 22, 2021Updated 4 years ago
cocomelonc / 2022-07-21-malware-tricks-22
View on GitHub
Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
☆20Jul 24, 2022Updated 3 years ago
Squiblydoo / MalAPIReader
View on GitHub
Reads and prints information from the website MalAPI.io
☆19Jul 14, 2022Updated 3 years ago
fcccode / Vx-Engines
View on GitHub
Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
☆30Oct 28, 2019Updated 6 years ago
CIRCL / forensic-tools
View on GitHub
CIRCL system forensic tools or a jumble of tools to support forensic
☆41Jan 20, 2023Updated 3 years ago
checkymander / CoreSploit
View on GitHub
Initial Commit of Coresploit
☆57Oct 12, 2021Updated 4 years ago
am0nsec / vx
View on GitHub
Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
☆192Aug 3, 2025Updated 6 months ago
trickster0 / EDR_Detector
View on GitHub
EDR Detector that can find what kind of endpoint solution is being used according to drivers in the system.
☆94Nov 5, 2021Updated 4 years ago
pventuzelo / wasm_workshop
View on GitHub
"Reversing WebAssembly Module 101" Workshop (NorthSec 2019, hack.lu 2019)
☆22Oct 15, 2020Updated 5 years ago
cocomelonc / 2022-04-13-malware-injection-19
View on GitHub
Classic DLL injection. Download dll from url and inject. Simple C++ implementation
☆10Apr 16, 2022Updated 3 years ago
ait-cs-IaaS / Taranis-NG
View on GitHub
Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains …
☆10Oct 17, 2023Updated 2 years ago
mubix / elgamalcrypto
View on GitHub
Simple Python Elgamal Encryption and Decryption Tool
☆10Jan 7, 2020Updated 6 years ago
EgeBalci / SelfDefense
View on GitHub
Several self-defense shellcodes
☆23Jul 16, 2019Updated 6 years ago
0xrawsec / golang-misp
View on GitHub
Golang Library to interact with your MISP instance
☆22Sep 12, 2019Updated 6 years ago
Kudaes / RustChain
View on GitHub
Hide memory artifacts using ROP and hardware breakpoints.
☆146Oct 20, 2023Updated 2 years ago
lcashdol / UPX
View on GitHub
A utility to fix intentionally corrupted UPX packed files.
☆94May 22, 2023Updated 2 years ago
elfmaster / linker_preloading_virus
View on GitHub
An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
☆66Feb 24, 2022Updated 4 years ago
ksen-lin / nitara2
View on GitHub
yet another hidden LKM hunter
☆32Sep 18, 2025Updated 5 months ago
capt-meelo / NtCreateUserProcess
View on GitHub
Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html
☆144May 10, 2022Updated 3 years ago
metalstormbass / VulnerableAzure
View on GitHub
Terraform playbook of a vulnerable Azure deployment
☆10Apr 28, 2022Updated 3 years ago