0xulbera's Stars
pankoza2-pl/Malware2.0Database
My new malware database, the old one is now archived and all my new malwares will be uploaded here instead. As always, this is made for educational purposes only, I'm not responsible for any damages
pikulet/anti-debugging
demo of common anti-analysis techniques used by malware
Data3rr/Res0luti0n
(Beta) RES0LUTI0N is a malware builder undetected by Windows Defender with an anti-VM coded in python and C#. It uses a triple layer randomized obfuscation system, a malware partitioning system and a recompilation system at the same time.
encryptedmind/Windows-Malware-Analysis-Essentials-Code-Repo
Contains the code repository for the book - "Windows Malware Analysis Essentials (Packt 2015)"
whichbuffer/ReverseShell
Stealthy Windows backdoor
whokilleddb/injection-for-dummies
A collection of PoCs for different injection techniques on Windows!
mrexodia/dumpulator
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
AzAgarampur/PsForge
Process Hollowing demonstration & explanation
JustasMasiulis/lazy_importer
library for importing functions from dlls in a hidden, reverse engineer unfriendly way
GuillaumeOrlando/Windows_Malware_Emulator
Emulator for Windows Malware Analysis
De3vil/WinPersistence
Some of the techniques used in Malware Windows - Persistence(Registry HKCU,startup),Disable Windows Firewall,Disable Windows Defender
RamadhanAmizudin/malware
Malware Samples. Uploaded to GitHub for those want to analyse the code. Code mostly from: http://www.malwaretech.com
NavyTitanium/Fake-Sandbox-Artifacts
This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools
Mayachitra-Inc/MaleX
A curated dataset of malware and benign Windows executable samples for malware researchers
brosck/Frosty
「🧊」Ring 3 Rootkit for Windows 10
CYB3RMX/Qu1cksc0pe
All-in-One malware analysis tool.
trevorsaudi/Zero-Import-Malware
Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetModuleHandle windows APIs.
mgeeky/UnhookMe
UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red Teams malware
enkomio/thematrix
a PE Loader and Windows API tracer. Useful in malware analysis.
activescott/lessmsi
A tool to view and extract the contents of an Windows Installer (.msi) file.
RexProg/ILProtectorUnpacker
ILProtector Unpacker Script
chris2511/xca
X Certificate and Key management
x-nas/WinsockPacketEditor
WPE x64 is a Windows software that can intercept and modify WinSock packets, with adaptive support for 32-bit and 64 bit target programs WPE x64 是一款可以拦截并修改 WinSock 封包的 Windows 软件,自适应支持 32 位及 64 位的目标程序
521xueweihan/GitHub520
:kissing_heart: 让你“爱”上 GitHub,解决访问时图裂、加载慢的问题。(无需安装)
DonaldTrump0/LordPE
PE解析工具
detekt/detekt
Static code analysis for Kotlin
ayuthmang/.Net-Reverse-Engineering
Resources, tools about .net reverse engineering.
x64dbg/ScyllaHide
Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
slowmist/Blockchain-dark-forest-selfguard-handbook
Blockchain dark forest selfguard handbook. Master these, master the security of your cryptocurrency.
rootpencariilmu/Redlinestealer2020
New Redline Leak