malware-development | Topic | Ecosyste.ms: Repos

Topic: "malware-development"

vxunderground/MalwareSourceCode

Collection of malware source code for a variety of platforms in an array of different programming languages.

Language: Assembly - Size: 2.07 GB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 17,072 - Forks: 1,931

Whitecat18/Rust-for-Malware-Development

This repository contains complete resources and coding practices for malware development using Rust 🦀.

Language: Rust - Size: 32.2 MB - Last synced at: 27 days ago - Pushed at: 27 days ago - Stars: 2,601 - Forks: 115

joaoviictorti/RustRedOps

RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀

Language: Rust - Size: 2.49 MB - Last synced at: 7 days ago - Pushed at: about 2 months ago - Stars: 1,708 - Forks: 187

vxunderground/VX-API

Collection of various malicious functionality to aid in malware development

Language: C++ - Size: 1.15 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 1,674 - Forks: 279

rootkit-io/awesome-malware-development

Organized list of my malware development resources

Size: 115 KB - Last synced at: 12 days ago - Pushed at: over 3 years ago - Stars: 1,606 - Forks: 178

vxunderground/VXUG-Papers

Research code & papers from members of vx-underground.

Language: C - Size: 20.2 MB - Last synced at: 3 months ago - Pushed at: over 3 years ago - Stars: 1,251 - Forks: 245

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabilities.

Language: YARA - Size: 74 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 1,106 - Forks: 118

ZeroMemoryEx/Chaos-Rootkit

Now You See Me, Now You Don't

Language: C++ - Size: 2.75 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 977 - Forks: 148

redcode-labs/Coldfire

Golang malware development library

Language: Go - Size: 175 KB - Last synced at: about 2 months ago - Pushed at: 9 months ago - Stars: 963 - Forks: 143

nickvourd/Supernova

Real fucking shellcode encryptor & obfuscator tool

Language: Go - Size: 12.7 MB - Last synced at: 9 days ago - Pushed at: 2 months ago - Stars: 933 - Forks: 169

tarcisio-marinho/GonnaCry

A Linux Ransomware

Language: Python - Size: 123 MB - Last synced at: 3 months ago - Pushed at: 8 months ago - Stars: 726 - Forks: 403

VirtualAlllocEx/DEFCON-31-Syscalls-Workshop

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

Language: C - Size: 16.3 MB - Last synced at: 9 days ago - Pushed at: 4 months ago - Stars: 694 - Forks: 100

rek7/fireELF

fireELF - Fileless Linux Malware Framework

Language: Python - Size: 143 KB - Last synced at: 3 months ago - Pushed at: over 6 years ago - Stars: 667 - Forks: 112

dmdhrumilmistry/pyhtools

A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.

Language: Python - Size: 18.5 MB - Last synced at: 11 days ago - Pushed at: about 2 months ago - Stars: 593 - Forks: 91

EvilBytecode/GoRedOps

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.

Language: Go - Size: 1.7 MB - Last synced at: about 1 month ago - Pushed at: 4 months ago - Stars: 575 - Forks: 88

ThomasThelen/Anti-Debugging

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Language: C++ - Size: 74.4 MB - Last synced at: 3 months ago - Pushed at: over 3 years ago - Stars: 572 - Forks: 81

CyberSecurityUP/Red-Team-Exercises

Language: C++ - Size: 188 KB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 567 - Forks: 127

0x27/linux.mirai

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes

Language: C - Size: 140 KB - Last synced at: 2 months ago - Pushed at: over 8 years ago - Stars: 564 - Forks: 246

eversinc33/Banshee

Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.

Language: C++ - Size: 702 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 546 - Forks: 80

dobin/avred

Analyse your malware to surgically obfuscate it

Language: Python - Size: 8.04 MB - Last synced at: about 3 hours ago - Pushed at: 3 months ago - Stars: 495 - Forks: 59

EgeBalci/EGESPLOIT 📦

EGESPLOIT is a golang library for malware development

Language: Go - Size: 16.6 KB - Last synced at: about 1 year ago - Pushed at: over 8 years ago - Stars: 336 - Forks: 116

BlackSnufkin/BYOVD

BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology.

Language: Rust - Size: 382 KB - Last synced at: 6 days ago - Pushed at: 9 days ago - Stars: 328 - Forks: 54

d419h/IconJector

Unorthodox and stealthy way to inject a DLL into the explorer using icons

Language: C++ - Size: 548 KB - Last synced at: 2 months ago - Pushed at: 4 months ago - Stars: 321 - Forks: 44

x86byte/Obfusk8

Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries

Language: C++ - Size: 111 KB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 319 - Forks: 30

KCarretto/paragon

Red Team engagement platform with the goal of unifying offensive tools behind a simple UI

Language: Go - Size: 260 MB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 300 - Forks: 42

SubGlitch1/OSRipper

AV evading OSX Backdoor and Crypter Framework

Language: Python - Size: 4.22 MB - Last synced at: 12 days ago - Pushed at: over 1 year ago - Stars: 293 - Forks: 49

cr-0w/maldev

⚠️ malware development

Language: C - Size: 23.8 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 275 - Forks: 33

BlackSnufkin/NovaLdr

Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)

Language: Rust - Size: 146 KB - Last synced at: 6 days ago - Pushed at: about 1 year ago - Stars: 258 - Forks: 41

kleiton0x00/Shelltropy

A technique of hiding malicious shellcode via Shannon encoding.

Language: Assembly - Size: 3.12 MB - Last synced at: 2 months ago - Pushed at: almost 3 years ago - Stars: 255 - Forks: 34

cocomelonc/peekaboo

Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.

Language: C++ - Size: 4.36 MB - Last synced at: 4 months ago - Pushed at: 11 months ago - Stars: 243 - Forks: 41

x86byte/RE-MA-Roadmap

Reverse Engineering and Malware Analysis Roadmap

Size: 80.6 MB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 232 - Forks: 29

hugsy/stuff

Unsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest

Language: Python - Size: 865 KB - Last synced at: 3 months ago - Pushed at: about 1 year ago - Stars: 223 - Forks: 88

SaadAhla/dark-kill

A user-mode code and its rootkit that will Kill EDR Processes permanently by leveraging the power of Process Creation Blocking Kernel Callback Routine registering and ZwTerminateProcess.

Language: C++ - Size: 15.6 KB - Last synced at: 5 days ago - Pushed at: 3 months ago - Stars: 219 - Forks: 47

Cherno-x/MyShellcodeLoader

免杀与恶意软件开发

Language: C++ - Size: 1.06 MB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 218 - Forks: 29

505SARWARERROR/RABIDS

Modular malware framework to build custom payloads, designed for advanced adversary simulation and malware research

Language: Python - Size: 7.14 MB - Last synced at: 16 days ago - Pushed at: about 2 months ago - Stars: 208 - Forks: 39

cdong1012/Rust-Ransomware

Ransomware written in Rust

Language: Rust - Size: 8.1 MB - Last synced at: almost 2 years ago - Pushed at: about 5 years ago - Stars: 201 - Forks: 47

CosmodiumCS/MalwareDNA

This repository contains various snippets I use in my malware, command and control servers, payloads, and much more. Hopefully it can help you out in building your own malware and payloads :D

Language: JavaScript - Size: 15.5 MB - Last synced at: 3 days ago - Pushed at: about 2 months ago - Stars: 195 - Forks: 30

senzee1984/micr0_shell

micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.

Language: Python - Size: 602 KB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 185 - Forks: 29

ZeroMemoryEx/Handle-Ripper

Windows handle hijacker

Language: C++ - Size: 13.7 KB - Last synced at: almost 2 years ago - Pushed at: over 2 years ago - Stars: 179 - Forks: 26

Unprotect-Project/Unprotect_Submission

Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in this exciting journey and add your expertise to our collective efforts. By contributing, you’ll help strengthen the project and push the boundaries of what we can achieve together.

Language: C++ - Size: 315 KB - Last synced at: 9 days ago - Pushed at: 5 months ago - Stars: 172 - Forks: 50

DarkSpaceSecurity/RunAs-Stealer

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

Language: C++ - Size: 29.3 KB - Last synced at: 5 months ago - Pushed at: 6 months ago - Stars: 169 - Forks: 30

ricardojoserf/WhoamiAlternatives

Different methods to get current username without using whoami

Language: C# - Size: 24.4 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 169 - Forks: 17

malsearchs/Pure-Malware-Development

Pure Malware Development Resource Collections

Size: 42 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 166 - Forks: 22

EddieIvan01/memexec

A library for loading and executing PE (Portable Executable) from memory without ever touching the disk

Language: Rust - Size: 34.2 KB - Last synced at: about 1 month ago - Pushed at: almost 5 years ago - Stars: 154 - Forks: 20

BlackSnufkin/Rusty-Playground

Some Rust program I wrote while learning Malware Development

Language: Rust - Size: 262 KB - Last synced at: 6 days ago - Pushed at: 7 months ago - Stars: 142 - Forks: 11

albertzsigovits/malware-writeups

Personal research and publication on malware families

Size: 13.9 MB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 137 - Forks: 24

MrTuxx/OffensiveGolang

A collection of offensive Go packages inspired by different Go repositories.

Language: Go - Size: 69.3 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 124 - Forks: 19

Offensive-Panda/DefenseEvasionTechniques

This comprehensive and central repository is designed for cybersecurity enthusiasts, researchers, and professionals seeking to stay ahead in the field. It provides a valuable resource for those dedicated to improving their skills in malware development, malware research, offensive security, security defenses and measures.

Language: C++ - Size: 342 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 117 - Forks: 16

x4nth055/ethical-hacking-tools-python

Python programs & tools built in the Ethical Hacking with Python EBook

Language: Python - Size: 9.2 MB - Last synced at: 2 months ago - Pushed at: about 1 year ago - Stars: 115 - Forks: 45

KCarretto/Arsenal 📦

Extensible Red Team Framework

Language: Python - Size: 458 KB - Last synced at: almost 2 years ago - Pushed at: almost 6 years ago - Stars: 110 - Forks: 39

oftn-oswg/zerodrop

A stealth URL toolkit optimized for bypassing censorship filters and/or dropping malware

Language: Go - Size: 183 KB - Last synced at: 9 months ago - Pushed at: 12 months ago - Stars: 106 - Forks: 13

voidvxvt/HellBunny

Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks

Language: C - Size: 617 KB - Last synced at: 3 months ago - Pushed at: 9 months ago - Stars: 105 - Forks: 19

Lithium876/ConTroll_Remote_Access_Trojan

Created a VERY SIMPLE remote access Trojan that will establish administrative control over any windows machine it compromises.

Language: Python - Size: 3.21 MB - Last synced at: 6 days ago - Pushed at: over 7 years ago - Stars: 98 - Forks: 25

safesploit/PythonRAT

Command and Control (C2) server with backdoor acting as Remote Administration Trojan (RAT) written in Python3

Language: Python - Size: 152 KB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 92 - Forks: 33

CristianTuretta/MAD-Spy

We developed a malware for educational purposes. In particular, our goal is to provide a PoC of what is known as a Repacking attack, a known technique widely used by malware cybercrooks to trojanize android apps. The answer to solve this particular goal boils down in the simplicity of APK decompiling and smali code injection.

Language: Java - Size: 10.2 MB - Last synced at: over 1 year ago - Pushed at: over 6 years ago - Stars: 92 - Forks: 34

alichtman/malware-techniques

A collection of techniques commonly used in malware to accomplish core tasks.

Language: Python - Size: 374 KB - Last synced at: 17 days ago - Pushed at: about 6 years ago - Stars: 82 - Forks: 8

Xart3mis/AKILT

A Windows Botnet written in Golang

Language: Go - Size: 32.3 MB - Last synced at: about 1 year ago - Pushed at: about 2 years ago - Stars: 73 - Forks: 12

captain-woof/malware-study

My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to anyone's system.

Language: C - Size: 403 MB - Last synced at: 3 months ago - Pushed at: 5 months ago - Stars: 70 - Forks: 9

AdnaneKhan/Cacheract

GitHub Actions Cache Native Malware - for Educational and Research Purposes only.

Language: TypeScript - Size: 198 KB - Last synced at: 6 days ago - Pushed at: 16 days ago - Stars: 68 - Forks: 3

x86byte/Stuxnet-Rootkit

Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis

Language: C - Size: 103 KB - Last synced at: 17 days ago - Pushed at: 12 months ago - Stars: 64 - Forks: 17

sexettin78/sexettintool

İçerisinde 100'den fazla modül ve özelliği barındıran çok amaçlı bir siber güvenlik aracı.

Language: Python - Size: 604 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 62 - Forks: 12

MalDev101/Loveware

Community driven computer worm

Language: Batchfile - Size: 3.68 MB - Last synced at: 8 months ago - Pushed at: about 3 years ago - Stars: 59 - Forks: 20

pankoza2-pl/Malware2.0Database

My new malware database, the old one is now archived and all my new malwares will be uploaded here instead. As always, this is made for educational purposes only, I'm not responsible for any damages

Language: C++ - Size: 794 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 57 - Forks: 13

hdks-bug/redteam-techniques

Collection of red team techniques.

Language: C++ - Size: 549 KB - Last synced at: about 2 months ago - Pushed at: 4 months ago - Stars: 56 - Forks: 10

abdullah2993/go-runpe

execute a PE in the address space of another PE aka process hollowing

Language: Go - Size: 7.81 KB - Last synced at: 5 months ago - Pushed at: almost 4 years ago - Stars: 55 - Forks: 19

ZeroMemoryEx/DeadLight

C# Malware that Steal Discord Token Directly From Memory and bypass any kind of token protection

Language: C# - Size: 124 KB - Last synced at: over 2 years ago - Pushed at: almost 4 years ago - Stars: 55 - Forks: 12

Ort0x36/Dimorf

Dimorf is a ransomware using 256-bit AES with a self-destructing, randomly generated key for Linux OS´s

Language: Python - Size: 69.3 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 49 - Forks: 11

Vatshayan/Malware-Detection-Using-Deep-Learning-Project

Malware-Detection-System-Using-Deep-Learning-Project. Project Includes PPT. Code, Explanation Video and Documents

Language: Python - Size: 8.79 KB - Last synced at: 5 months ago - Pushed at: about 3 years ago - Stars: 49 - Forks: 9

Ephrimgnanam/Cute-RATs

This is a collection of RATs for educational purposes

Size: 189 MB - Last synced at: 24 days ago - Pushed at: 24 days ago - Stars: 46 - Forks: 7

paulveillard/cybersecurity-malware-analysis

A collection of Malware Analysis software, materials, libraries, documents, books, resources about malware analysis in Cybersecurity.

Size: 339 KB - Last synced at: 5 months ago - Pushed at: over 2 years ago - Stars: 46 - Forks: 9

0x00ctrl/CyberSec-Books

Some useful books related to Cybersecurity, Linux and more.

Size: 213 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 45 - Forks: 10

r0jahsm0ntar1/africana-framework

Africana Framework is an open-source, community-driven cybersecurity toolkit designed for ethical penetration testing & vulnerability assessment. It automates the detection of security flaws across a wide range of network and web technologies, including all networks, system anonymity, & web bug hunting. It's purely written for Good and not Evil.

Language: Go - Size: 163 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 41 - Forks: 11

paulveillard/cybersecurity-threat-detection

An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat Detection & Hunting.

Size: 138 KB - Last synced at: 5 months ago - Pushed at: almost 3 years ago - Stars: 41 - Forks: 8

x86byte/LummaC2-Stealer

LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis

Language: C - Size: 129 KB - Last synced at: 4 months ago - Pushed at: 7 months ago - Stars: 40 - Forks: 7

PL-V/Firefox-WebInject

Firefox webInjector capable of injecting codes into webpages using a mitmproxy.

Language: C++ - Size: 925 KB - Last synced at: 5 months ago - Pushed at: almost 3 years ago - Stars: 40 - Forks: 13

Black-Hell-Team/sppen

Malware and malicious applications database

Language: Java - Size: 14.6 MB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 37 - Forks: 8

0x00pf/programming4wannabes 📦

Programming course for Wannabes

Language: C - Size: 297 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 35 - Forks: 9

NucleiAv/MalwareHandbook

A book covering the whole spectrum of Malware

Size: 11.3 MB - Last synced at: 12 months ago - Pushed at: 12 months ago - Stars: 35 - Forks: 1

0xbekoo/maldev

⚠️ Malware Development training ⚠️

Language: C - Size: 31.8 MB - Last synced at: about 1 month ago - Pushed at: 6 months ago - Stars: 34 - Forks: 2

compilepeace/KAAL_BHAIRAV

-x-x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x-x- An ELF virus capable of generating segment padded trojans.

Language: C - Size: 840 KB - Last synced at: over 2 years ago - Pushed at: over 3 years ago - Stars: 34 - Forks: 12

CyberSecurityUP/Offensive-Windows-Drivers-Development

Language: C - Size: 668 KB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 31 - Forks: 7

kh4sh3i/Ransomware-Samples

Small collection of Ransomware organized by family.

Size: 14.8 MB - Last synced at: over 2 years ago - Pushed at: about 4 years ago - Stars: 30 - Forks: 14

the-issues/purewater

Remote control software, supported Windows/Unix/MacOS/Linux(x86/x64/mips/arm)

Language: C - Size: 226 KB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 28 - Forks: 8

0x00wolf/PATHBYTER-Hybrid-Encryption-Ransomware-with-Multiprocessing-in-Python

Pathbyter is a lightning fast proof-of-concept ransomware that uses RSA wrapped AES, multiprocessing, in memory key encryption, appends encrypted AES keys to files, and other tactics utilized by advanced threat actors like Conti, REvil, WannaCry, Ryuk, Lockbit, etc.

Language: Python - Size: 342 KB - Last synced at: 5 months ago - Pushed at: almost 2 years ago - Stars: 27 - Forks: 2