GitHub / SaadAhla / dark-kill
A user-mode code and its rootkit that will Kill EDR Processes permanently by leveraging the power of Process Creation Blocking Kernel Callback Routine registering and ZwTerminateProcess.
JSON API: http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SaadAhla%2Fdark-kill
PURL: pkg:github/SaadAhla/dark-kill
Stars: 197
Forks: 42
Open issues: 0
License: None
Language: C++
Size: 15.6 KB
Dependencies parsed at: Pending
Created at: about 2 months ago
Updated at: 16 days ago
Pushed at: about 2 months ago
Last synced at: 14 days ago
Topics: malware, malware-development, redteam, rootkit, windows
Funding Links https://github.com/sponsors/SaadAhla