This project enables malware to resurrect and remain hidden even after termination, using a User-Mode Program and Kernel-Mode Driver as part of the Malware Resurrection technique.
GPL-3.0 License
Penetration testing utility and antivirus assessment tool.
Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypass...
A collection of PoCs for different injection techniques on Windows!
Nidhogg is an all-in-one simple to use windows kernel rootkit.
A free but powerful Windows kernel research tool.
Stealthy backdoor for Windows operating systems
🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry obje...
KRYPTOS is a sophisticated Python-based ransomware proof of concept (POC) designed for educationa...
THorse is a RAT (Remote Administrator Trojan) Generator for Windows/Linux systems written in Pyth...
A tool which is uses to remove Windows Defender in Windows 8.x, Windows 10 (every version) and Wi...
Is Windows a joke or are you? 🧢
Antivirus evasion project