This is your work, valued
WinDefenderKiller. Windows Defender Killer | Registry-Based Disablement + BYOVD Process Termination (C++)
548RDPCredentialStealer. RDPCredentialStealer it's an implant that steal credentials provided by users in RDP using API Hooking with Detours in C++
265GhostShell. Interactive shell to execute commands anonymously using Proxychains and Tor
100RedNeuron. RedNeuron - Framework Creator of Malware focused in attacking Windows but created to execute framework in Linux 👾
74S12URootkit. User Mode Windows Rootkit
74NinjaInjector. Classic Process Injection with Memory Evasion Techniques implemantation
74Admin2Sys. A Windows token-theft utility that enumerates SYSTEM processes, duplicates their access token, and spawns a new process running as NT AUTHORITY\SYSTEM.
65LokiRAT. Multi-component Remote Access Trojan: C++ client (victim), C# server, and Angular frontend.
61ShadowByte-Botnet. Complete Botnet Infrastucture with Malicious C&C Server And Malware Agents to infect Windows OS
61NtUnhook. Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll
41HTTP_POST-Login-BruteForce. HTTP_POST Login BruteForce
36DumpLsass. C++ Code to perform a MiniDump of lsass.exe
36RatInject. Rat Inject is C++ Executable to gain Undetectable Persistence in Windows via 4 Registry Keys
32ETWEvasionToolkit. Toolkit of Projects to attack and evade Event Trace for Windows
27RansomwareS12. Simple Ransoware to attack Windows 🌟
26MalDev-Lib. Malware Libraries focused in help Malware Development
24AD-Pentest. Pentesting Tools to Automatize Active Directory Hacking
23PrivilegeEscalationClass. C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin
23ThreadHijacking. Threat Hijacking Simple Implementation
23bypass_magic_bytes. Bypassing File Upload Restriction using Magic Bytes
22Automatic-Blind-SQL-Injection. Automate Blind SQL Injection with Python.
22GhostlyHollowingCrypter. Advanced in-memory process injection using transient SEC_IMAGE sections, custom crypter, and ADS payload delivery no disk traces, maximum stealth.
20CTF-s. Github repository with Write Up, AutoPwn, Tools, Videos of CTF's from HackTheBox and TryHackMe
19WindowInjector. Linux Malware creator to attack Windows System via Reverse Shell with FindWindow Process Code Injection
19Backdoor. The best Python Backdoor👌
19PDFTypeSpoofing. PDF Icon File Type Spoofer
17Infinite-Backdoors. Bash Script with 4 ways to get persistence in Linux systems WITHOUT root permisions
17FreeThreadHijacking. Perform Thread Hijacking Shellcode Injection without OpenProcess and OpenThread mapping all the free handles in memory
16LFI-Paradise. Local File Inclusion Scanner and Exploiter
15Broke-Login. Simple Python Modular Script to Broke Web Logins
15AntiVM. C++ Class with various techniques to detect the execution in a virtualized environment
14Scanner_Port. Easy Port Scanner with Python
14MySQL-DataStealer. Post-Exploitation Tool to Steal MySQL Data, and with persistence extract all data from MySQL table every time that Windows are opened with a Server to receive the extracted Files
14Pivoting_Enum. Automate All Pivoting System Enumeration with this Bash Script
13rfi_paradise. Python Scanner and Exploiter of Remote File Inclusion Vulnerabilitie
13FTP-Sniffer. MITM to Capture FTP Credentials
13AntiDebugging. Anti Debugging C++ Class
13Reverse-Shell-C-PlusPlus. Simple C++ Reverse Shell
13RemoteFunctionPatcher. Patch (block) whatever function you want in a remote process. Adding a ret instruction at the first memory address of this function, the target function will be exited automatically all the times called by this process
12FileExtractor. C++ Code to Extract Windows File and Receive in Linux Machine
12virus_downloader. Easy Python virus framework
12KernelProcessesTerminator. Terminate Processes from a Kernel Driver receiving the process to kill via simple userland application
12ReverseShell-Creator. Very basic Web created with HTML and JavaScript to create Online Payload to do Reverse Shells
12pentweb. Bash script that creates directories and files to organize a pentesting
12ThreadCallStackSpoofer. Call Stack Spoofer, a Windows-based tool that allows modifying the call stack of a suspended thread. It takes a list of memory addresses as arguments and writes them into the stack
12FileHider. C++ Implementation to Hide File in ADS with the option of Encrpytion + Fragmentation
11MapFreeMemoryHandles. Find all type of handles free in Windows Memory
11VirtualAlloc-Implementation. My Own VirtualAlloc Implementation to use as alternative unknown for all the defense solutions of VirtualAlloc Win32 API Function
11KeyloggerS12. C++ keylogger to save all the keys pressed into a local txt file
10AMSIPatching. C++ Code to Patch AMSI in Remote Processes
10ProcList. C++ Script to list active processes with name, PID, Parent PID and User running it
10AdminX. AdminX it's a Malware to execute process as some users from a Windows OS
10ResurrectedMalware. Malware Implant to Simulate various Resurretion Techniques
10ShellcodeCrypterVSExtension. ShellcodeCrypterVSExtension is a Visual Studio extension that provides a simple XORand AES-based encryption and decryption tool. It allows developers to encrypt shellcode using a key. This extension is designed to integrate seamlessly into Visual Studio, making shellcode manipulation easier.
10KernelEventMonitor. Monitoring Process Creation/Termination, Thread Creation/Termination and Image Load Notifications from a Kernel Driver
10StringCrypter. Repository with the necessary implementation to encrypt strings for our implants
10BruteSSH. SSH Bruteforce Basic Script created with C++ to Linux
10StringCrypterVSExtension. Visual Studio Extension - String Crypter Project
9HideProcessesDKOM. Taking advantatge of Direct Kernel Object Manipulation to hide process from the EPROCESS structure
9SecurityDetox. Detect and Delete Security Products
9