Topic: "fileless-malware"
RuoJi6/xxl-job-FLM
xxl-job内存马
Language: Java - Size: 5.74 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 151 - Forks: 12
ELMERIKH/PyinMemoryPE
execute PE in memory Filelessly
Language: Python - Size: 11.2 MB - Last synced at: 22 days ago - Pushed at: 3 months ago - Stars: 33 - Forks: 4
Workaholic9/FUD-Crypter-Bypass-Windows-Defender
Origami Crypter with an updated version of the stub that bypasses windows defender.
Size: 4.47 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 12 - Forks: 1
Bread-Yolk/plaguards
Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams.
Language: Python - Size: 134 MB - Last synced at: 30 days ago - Pushed at: 30 days ago - Stars: 5 - Forks: 3
simpkinstimothy84/Origami-Crypter-Packer-Bypassing-WD
The origami packer, with an updated stub that bypasses windows defender - All credited goes to dr4k0nia for creating the original program.
Size: 443 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 4 - Forks: 1
NetherB3n/FUD-Bat-Crypter
A crypter that uses a bat file to run an executable in memory in the powershell process. Fully Undetected - Tested on ESET nod32, Kaspersky, windows defenders, 360 security, etc.
Size: 32.2 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 3 - Forks: 0
PirateBoot/NSFW-Ransom
Fileless malware project for educational and research purposes only.
Language: C++ - Size: 383 KB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 1 - Forks: 0
capitalcalculatorboy/Crypter-For-Sale-Bypassing-Windows-Defender
Selling crypter / crypter services bypassing windows defender. Private stub for each purchase. 50 dollars.
Size: 1000 Bytes - Last synced at: 21 days ago - Pushed at: 21 days ago - Stars: 1 - Forks: 0
Lyxt-git/AESECB-Hollow
Fully written in Python 64bit and C++ 32bit, interacting with WinAPI, using AES-ECB from Cryptopp C++ and PyCryptodome, for most binary that can be handle both. Depend on your payload and the target system architecture as you wish after Reconnaissance.
Language: C++ - Size: 2.33 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0
NetherB3n/Project-RedThreat-Ransomware
A fileless powershell-based ransomware malware program that encrypts files with AES and exfils key through discord webhook. Bypassing all antiviruses
Size: 4.88 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 1 - Forks: 0
Sayan690/Weaponised-DFE
Fetch a remote C# Assembly and execute it in memory using Assembly.Load
Language: Python - Size: 76.2 KB - Last synced at: 18 days ago - Pushed at: 18 days ago - Stars: 0 - Forks: 0
MakeMeAnOffer/Covert-Powershell-RAT
A covert powershell based remote access trojan, specifically designed to bypass all antiviruses, fileless, runs exclusively in powershell process. Constantly being updated. Utilizes hoaxshell for C2, payload bypassing windows defender and many other namebrand AVs (Kaspersky, Avast, ESET nod32, etc)
Size: 0 Bytes - Last synced at: 12 months ago - Pushed at: 12 months ago - Stars: 0 - Forks: 0
IVANGroupOfficial/RedThreat-Ransomware
A Fileless powershell-based ransomware
Size: 17.8 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0
