trevorsaudi / Zero-Import-Malware
Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetModuleHandle windows APIs.
☆38Updated last year
Alternatives and similar repositories for Zero-Import-Malware:
Users that are interested in Zero-Import-Malware are comparing it to the libraries listed below
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…☆58Updated last year
- Create Anti-Copy DRM Malware☆55Updated 8 months ago
- Winsocket for Cobalt Strike.☆98Updated last year
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆82Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆53Updated last year
- PowerShell script to generate ShellCode in various formats☆41Updated 7 months ago
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆84Updated 2 years ago
- .bin file to shellcode convertor☆34Updated 10 months ago
- Rex Shellcode Loader for AV/EDR evasion☆31Updated last year
- ☆123Updated last year
- ☆55Updated 6 months ago
- Simple Shellcode Loader tool☆25Updated last year
- A repository with my code snippets for research/education purposes.☆50Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆82Updated 6 months ago
- ☆56Updated 5 months ago
- C# havoc implant☆99Updated 2 years ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated last year
- Duplicate not owned Token from Running Process☆72Updated last year
- Terminate AV/EDR leveraging BYOVD attack☆84Updated last month
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆63Updated 4 months ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆90Updated 7 months ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆24Updated 7 months ago
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆35Updated last year
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆47Updated 3 months ago
- Red Team Operation's Defense Evasion Technique.☆53Updated 11 months ago
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆119Updated 2 years ago
- Automated .NET AppDomain hijack payload generation☆124Updated 3 months ago
- ApexLdr is a DLL Payload Loader written in C☆108Updated 9 months ago
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆76Updated 2 years ago