Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

C 3,520 469 Updated Jun 21, 2024

stephenfewer / ReflectiveDLLInjection

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

C 2,827 780 Updated Sep 3, 2022

ionescu007 / SimpleVisor

SimpleVisor is a simple, portable, Intel VT-x hypervisor with two specific goals: using the least amount of assembly code (10 lines), and having the smallest amount of VMX-related code to support d…

C 1,770 261 Updated May 8, 2024

glmcdona / Process-Dump

Windows tool for dumping malware PE files from memory back to disk for analysis.

C 1,691 266 Updated Sep 3, 2024

bdamele / icmpsh

Simple reverse ICMP shell

C 1,567 414 Updated Apr 6, 2018

mubix / post-exploitation

Post Exploitation Collection

C 1,556 358 Updated May 1, 2020

ebiggers / libdeflate

Heavily optimized library for DEFLATE/zlib/gzip compression and decompression

C 1,070 178 Updated Feb 11, 2025

chokepoint / azazel

Azazel is a userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-dete…

C 780 176 Updated Mar 7, 2024

JonDoNym / peinjector

peinjector - MITM PE file infector

C 601 118 Updated May 11, 2016

ludocode / mpack

MPack - A C encoder/decoder for the MessagePack serialization format / msgpack.org[C]

C 565 86 Updated Apr 18, 2023

gbrindisi / malware

malware source codes

C 550 290 Updated Dec 16, 2022

leechristensen / UnmanagedPowerShell

Executes PowerShell from an unmanaged process

C 480 109 Updated Mar 17, 2016

bdamele / shellcodeexec

Script to execute in memory a sequence of opcodes

C 409 138 Updated Jun 23, 2014

unix-thrust / beurk

BEURK Experimental Unix RootKit

C 380 97 Updated Apr 28, 2017

seastorm / PuttyRider

Hijack Putty sessions in order to sniff conversation and inject Linux commands.

C 362 74 Updated Dec 14, 2014

camgunz / cmp

An implementation of the MessagePack serialization format in C / msgpack.org[C]

C 346 79 Updated May 3, 2024

pfalcon / uzlib

Radically unbloated DEFLATE/zlib/gzip compression/decompression library. Can decompress any gzip/zlib data, and offers simplified compressor which produces gzip-compatible output, while requiring m…

C 312 88 Updated Oct 9, 2023

rsmudge / metasploit-loader

A client compatible with Metasploit's staging protocol

C 253 89 Updated Aug 21, 2017

libmpack / libmpack

Simple implementation of msgpack in C

C 149 21 Updated Jan 24, 2025

georgenicolaou / W64oWoW64

Library that allows you to run 64bit code on a Wow64 32bit process

C 145 50 Updated May 17, 2017

Evengard / cntlm

PLEASE NOTE THAT THIS FORK IS NOT MAINTAINED! For the maintained fork please refer to https://github.com/versat/cntlm. Cntlm is an NTLM / NTLM Session Response / NTLMv2 authenticating HTTP proxy in…

C 130 45 Updated Aug 31, 2021

jibsen / brieflz

Small fast Lempel-Ziv compression library

C 103 18 Updated Feb 2, 2024

rtsisyk / msgpuck

A simple and efficient MsgPack binary serialization library in a self-contained header file

C 86 28 Updated Apr 3, 2019

rsmudge / Layer2-Pivoting-Client

A simple client to demonstrate Layer-2 pivoting. Compatible with the simpletun.c server written by Davide Brini.

C 74 38 Updated Oct 15, 2014

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Robert Frei robertfrei

Block or report robertfrei

Stars

robertdavidgraham / masscan

gentilkiwi / mimikatz

DaveGamble / cJSON

hfiref0x / UACME

kokke / tiny-AES-c

zserge / jsmn

a0rtega / pafish