Alternatives and similar repositories for VXUG-Papers:

Users that are interested in VXUG-Papers are comparing it to the libraries listed below

• vxunderground / VX-API
  Collection of various malicious functionality to aid in malware development
  ☆1,554Updated 10 months ago
• Idov31 / Nidhogg
  Nidhogg is an all-in-one simple to use windows kernel rootkit.
  ☆1,863Updated 3 months ago
• FULLSHADE / WindowsExploitationResources
  Resources for Windows exploit development
  ☆1,552Updated 3 years ago
• jstrosch / malware-samples
  Malware samples, analysis exercises and other interesting resources.
  ☆1,498Updated last year
• hasherezade / hollows_hunter
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,085Updated 2 weeks ago
• Dump-GUY / Malware-analysis-and-Reverse-engineering
  Some of my publicly available Malware analysis and Reverse engineering.
  ☆773Updated 7 months ago
• chvancooten / maldev-for-dummies
  A workshop about Malware Development
  ☆1,608Updated last year
• rootkit-io / awesome-malware-development
  Organized list of my malware development resources
  ☆1,469Updated 2 years ago
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,831Updated 2 years ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,067Updated 3 years ago
• Mr-Un1k0d3r / EDRs
  ☆2,036Updated last year
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,405Updated 3 years ago
• matterpreter / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆2,371Updated last year
• 0x4143 / malware-gems
  A not so awesome list of malware gems for aspiring malware analysts
  ☆800Updated last year
• 3xpl01tc0d3r / ProcessInjection
  This program is designed to demonstrate various process injection techniques
  ☆1,094Updated last year
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,183Updated last month
• D4stiny / spectre
  A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.
  ☆689Updated 4 years ago
• BC-SECURITY / Beginners-Guide-to-Obfuscation
  ☆1,019Updated 7 months ago
• jxy-s / herpaderping
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆1,113Updated last year
• fr0gger / Awesome_Malware_Techniques
  This is a repository of resource about Malware techniques
  ☆777Updated last year
• ethereal-vx / Antivirus-Artifacts
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆729Updated 3 years ago
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆720Updated 10 months ago
• hasherezade / malware_training_vol1
  Materials for Windows Malware Analysis training (volume 1)
  ☆1,957Updated 6 months ago
• Cracked5pider / Stardust
  A modern 64-bit position independent implant template
  ☆1,093Updated 7 months ago
• m0n0ph1 / Process-Hollowing
  Great explanation of Process Hollowing (a Technique often used in Malware)
  ☆1,280Updated last year
• phra / PEzor
  Open-Source Shellcode & PE Packer
  ☆1,874Updated 11 months ago
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,167Updated last year
• jthuraisamy / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆1,576Updated 2 years ago
• XaFF-XaFF / Cronos-Rootkit
  Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
  ☆870Updated 2 years ago