sonofagl1tch / MalwareResearch
This directory contains random scripts from threat hunting or malware research
☆10Updated 7 years ago
Alternatives and similar repositories for MalwareResearch:
Users that are interested in MalwareResearch are comparing it to the libraries listed below
- A PowerShell script to prevent Sysmon from writing its events☆15Updated 4 years ago
- Speaking materials from conferences I've given☆9Updated 2 years ago
- My manual analysis of malware families☆13Updated 7 years ago
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆21Updated 3 years ago
- Techniques that i have used to evade anti-virus during pen tests.☆13Updated 6 years ago
- ☆12Updated 3 years ago
- A simple, minimal C# windows service implementation that can be used to demonstrate privilege escalation from misconfigured windows servi…☆16Updated 9 years ago
- Manticore's Public Threats Repository☆10Updated 4 years ago
- C# code to run PIC using CreateThread☆16Updated 5 years ago
- Useful Windows and AD tools☆15Updated 3 years ago
- Automated Payload Test Controller☆9Updated 7 years ago
- Simple decrypter for strings used in SamSam Ransomware samples.☆17Updated 5 years ago
- Starting Code for my How to Write Malware 101 Class. This is a Proof of Concept of a C# RAT (Remote Access Trojan) made by Sean Pierce (@…☆22Updated 6 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆15Updated 4 years ago
- ☆25Updated 6 years ago
- Brute Force and Scan WinRm Service☆13Updated 5 years ago
- ☆10Updated 4 years ago
- Simple shellcode injector.☆14Updated 6 years ago
- module for certexfil☆15Updated 2 years ago
- An AV evasion technique using multibyte xor encoding of shellcode☆8Updated 8 years ago
- A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…☆17Updated 4 years ago
- Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.☆14Updated 7 years ago
- just manipulatin these here tokens yes sir nothing weird☆22Updated 2 years ago
- ☆16Updated 6 years ago
- Exploit Research & Development - Ported Exploits☆11Updated 7 years ago
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14Updated 4 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆28Updated 8 years ago
- ☆10Updated 7 years ago
- PoC code from blog☆16Updated 4 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago