trevorsaudi / Zero-Import-MalwareLinks
Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetModuleHandle windows APIs.
☆39Updated last year
Alternatives and similar repositories for Zero-Import-Malware
Users that are interested in Zero-Import-Malware are comparing it to the libraries listed below
Sorting:
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆47Updated 5 months ago
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- Winsocket for Cobalt Strike.☆98Updated last year
- Simple Shellcode Loader tool☆26Updated last year
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated last year
- .bin file to shellcode convertor☆38Updated 11 months ago
- ☆57Updated 7 months ago
- PowerShell script to generate ShellCode in various formats☆42Updated 9 months ago
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆54Updated last year
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆38Updated last year
- ☆55Updated 8 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆122Updated 8 months ago
- Simple C++ PoC of SeDebugPrivilege Privesc☆24Updated last year
- Rex Shellcode Loader for AV/EDR evasion☆31Updated last year
- C# havoc implant☆100Updated 2 years ago
- Duplicate not owned Token from Running Process☆72Updated last year
- Dump Windows SAM hashes☆42Updated last year
- A repository holding Proof of Concepts for executing the calculator application via different file formats☆38Updated 11 months ago
- Terminate AV/EDR leveraging BYOVD attack☆87Updated 3 months ago
- Reasonably undetected shellcode stager and executer.☆37Updated last month
- Tool to bypass LSA Protection (aka Protected Process Light)☆54Updated 5 months ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆71Updated 2 months ago
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…☆60Updated 2 years ago
- A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.☆88Updated last year
- C++ Staged Shellcode Loader with Evasion capabilities.☆92Updated 8 months ago
- ☆88Updated last year
- Tool to start processes as SYSTEM using token duplication☆38Updated 4 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆105Updated last year