secana / PeNet-Analyzer
Analyzers for Portable Executable anomalies and other malware behavior.
☆32Updated 9 months ago
Alternatives and similar repositories for PeNet-Analyzer:
Users that are interested in PeNet-Analyzer are comparing it to the libraries listed below
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆26Updated 8 months ago
- Get-UnJlaive is tool which is able to reconstruct Jlaive (.NET Antivirus Evasion Tool (Exe2Bat)) to original Assembly and stub Assembly.☆22Updated 2 years ago
- a small wiper malware programmed in c#☆51Updated 2 years ago
- Dump certificates from PE files in different formats☆38Updated last year
- Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.☆49Updated 3 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆66Updated last year
- This is a free & Open source File dropper that is made strictly for EdUcAtIoNaL pUrPoSeS of course☆29Updated 2 years ago
- Sources Codes of many MSIL malwares☆23Updated 2 years ago
- Learning Process Injection and Hollowing techniques☆41Updated 2 years ago
- Unpacker and Config Extractor for managed Redline Stealer payloads☆40Updated 2 years ago
- Make an executable run with TrustedInstaller permissions under SYSTEM account.☆38Updated 4 years ago
- Collection of various WINAPI tricks / features used or abused by Malware☆14Updated 3 years ago
- 🚧 C# UAC Bypass technique using mock directories 🚧☆29Updated 2 years ago
- This central repository is crafted for cybersecurity enthusiasts, researchers, and professionals aiming to advance their skills. It offer…☆14Updated 5 months ago
- Example of C# heap injector for x64 and x86 shellcodes☆13Updated 2 years ago
- ☆26Updated 4 months ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆65Updated last year
- A .NET binary loader that bypasses AMSI☆44Updated 3 years ago
- ☆16Updated 3 years ago
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆54Updated 2 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 2 years ago
- IDA Python scripts☆34Updated this week
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆34Updated 5 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆102Updated 2 years ago
- PoC Ransomware with Coinbase Commerce integration built on C# .NET Framework (console) and PHP☆24Updated 3 years ago
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆38Updated 3 years ago
- A Flask-based HTTP(S) command and control (C2) with a web frontend. Malleable agent written in Go.☆36Updated last year
- This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…☆15Updated 3 years ago