Alternatives and similar repositories for siph0n-rootkit

Users that are interested in siph0n-rootkit are comparing it to the libraries listed below

• cys3c / Siofra
  DLL hijacking vulnerability scanner and PE infector tool
  ☆18Updated 7 years ago
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆17Updated 6 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆17Updated 4 years ago
• rmdavy / AmsiPEBWalkVBAx64
  ☆15Updated 5 years ago
• h0mbre / Myth
  ADD/SUB encoder for alphanumeric shellcode
  ☆9Updated 5 years ago
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆32Updated 5 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 3 years ago
• py7hagoras / OfficeMacro64
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆21Updated 5 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 4 years ago
• ChaitanyaHaritash / NIM-Scripts
  ☆18Updated 3 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 7 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 5 years ago
• bufferbandit / silent_cleanup_uac_bypass
  Silent Cleanup UAC Bypass POC
  ☆11Updated 5 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆17Updated last year
• williamknows / CodeCoverageModuleStomping
  ☆12Updated 5 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆17Updated 6 years ago
• mthbernardes / BadArchitect
  Abusing SketchUp to make persistence on Windows
  ☆21Updated 6 years ago
• audibleblink / davil
  leaking net-ntlm with webdav
  ☆25Updated 4 years ago
• knavesec / EyeWitnessTheFitness
  Exactly what it sounds like, which is something rad
  ☆22Updated 2 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• aj-code / 3gsocks
  3gsocks - a reverse connection socks5 based network pivot
  ☆10Updated 4 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆18Updated 4 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• SneakyNachos / MalwareAnalysisTraining
  Work in Progress repo
  ☆14Updated 6 years ago
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆20Updated last year