secana / PeNet-Analyzer
Analyzers for Portable Executable anomalies and other malware behavior.
☆32Updated 8 months ago
Alternatives and similar repositories for PeNet-Analyzer:
Users that are interested in PeNet-Analyzer are comparing it to the libraries listed below
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆26Updated 8 months ago
- Dump certificates from PE files in different formats☆38Updated last year
- Collection of various WINAPI tricks / features used or abused by Malware☆14Updated 2 years ago
- Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.☆49Updated 3 years ago
- Sources Codes of many MSIL malwares☆23Updated 2 years ago
- PoC Ransomware with Coinbase Commerce integration built on C# .NET Framework (console) and PHP☆24Updated 2 years ago
- a small wiper malware programmed in c#☆51Updated 2 years ago
- This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…☆15Updated 3 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆23Updated 2 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆66Updated last year
- Alleged source code leak of Osiris banking trojan☆37Updated 4 years ago
- Source Code of MSIL Ransom☆13Updated 2 years ago
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆53Updated 2 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆101Updated 2 years ago
- A .NET binary loader that bypasses AMSI☆44Updated 3 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆38Updated 3 years ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆65Updated last year
- Bypass UAC on Windows 10/11 x64 using ms-settings DelegateExecute registry key.☆78Updated 2 years ago
- Example of C# heap injector for x64 and x86 shellcodes☆13Updated 2 years ago
- Easy XOR string encryption for NET based binaries☆135Updated last year
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Learning Process Injection and Hollowing techniques☆41Updated 2 years ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 2 years ago
- A Flask-based HTTP(S) command and control (C2) with a web frontend. Malleable agent written in Go.☆36Updated last year
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆38Updated 2 years ago
- C# loader capable of running stage-1 from remote url, file path as well as file share☆17Updated 2 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago