trevorsaudi / Zero-Import-MalwareLinks
Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetModuleHandle windows APIs.
☆40Updated 2 years ago
Alternatives and similar repositories for Zero-Import-Malware
Users that are interested in Zero-Import-Malware are comparing it to the libraries listed below
Sorting:
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…☆59Updated 2 years ago
- Winsocket for Cobalt Strike.☆102Updated 2 years ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆52Updated last year
- Small toolkit for extracting information and dumping sensitive strings from Windows processes☆116Updated last year
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆40Updated 2 years ago
- Documents Exfiltration project for fun and educational purposes☆145Updated 2 years ago
- An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…☆105Updated 2 years ago
- Bypass Malware Sandbox Evasion Ram check☆141Updated 3 years ago
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆84Updated 3 years ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆51Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆110Updated 2 years ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆97Updated last year
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated 2 years ago
- RegStrike is a .reg payload generator☆58Updated 2 years ago
- Duplicate not owned Token from Running Process☆74Updated 2 years ago
- Dump Windows SAM hashes☆42Updated 2 years ago
- .bin file to shellcode convertor☆39Updated last year
- ☆89Updated 2 years ago
- Automated .NET AppDomain hijack payload generation☆128Updated 11 months ago
- CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability☆41Updated 3 years ago
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆36Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆115Updated 2 years ago
- A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …☆91Updated 3 years ago
- Abuse leaked token handles.☆134Updated 2 years ago
- RCE PoC for Empire C2 framework <5.9.3☆28Updated last year
- A small and portable Windows C library for sandbox detection☆35Updated 2 years ago
- Rex Shellcode Loader for AV/EDR evasion☆35Updated last year
- C++ Code to perform a MiniDump of lsass.exe☆36Updated 2 years ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆35Updated 2 years ago