secana / PeNet-Analyzer
Analyzers for Portable Executable anomalies and other malware behavior.
☆32Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for PeNet-Analyzer
- Learning Process Injection and Hollowing techniques☆40Updated 2 years ago
- Dump certificates from PE files in different formats☆35Updated 10 months ago
- Sources Codes of many MSIL malwares☆22Updated 2 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆66Updated last year
- 🚧 C# UAC Bypass technique using mock directories 🚧☆27Updated 2 years ago
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- Example of C# heap injector for x64 and x86 shellcodes☆13Updated last year
- a small wiper malware programmed in c#☆45Updated 2 years ago
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Get-UnJlaive is tool which is able to reconstruct Jlaive (.NET Antivirus Evasion Tool (Exe2Bat)) to original Assembly and stub Assembly.☆21Updated 2 years ago
- API Hammering with C++20☆34Updated 2 years ago
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆23Updated 4 months ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆20Updated 3 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆100Updated last year
- A .NET binary loader that bypasses AMSI☆44Updated 3 years ago
- Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM☆47Updated last year
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- Alleged source code leak of Osiris banking trojan☆37Updated 3 years ago
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆59Updated last year
- Easy XOR string encryption for NET based binaries☆132Updated last year
- Make an executable run with TrustedInstaller permissions under SYSTEM account.☆39Updated 4 years ago
- A simple packer working with all PE files which cipher your exe with a XOR implementation☆14Updated 4 years ago
- Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)☆30Updated 2 years ago
- ☆15Updated 3 years ago
- This is a free & Open source File dropper that is made strictly for EdUcAtIoNaL pUrPoSeS of course☆28Updated 2 years ago
- Dll injection through code page id modification in registry. Based on jonas lykk research☆117Updated last year
- A Bumblebee-inspired Crypter☆80Updated last year
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆64Updated last year
- Malicious Macro attack techniques for red teamers☆15Updated 3 years ago