358 Open source projects that are alternatives of or similar to Ghostshell

trolo - an easy to use script for generating Payloads that bypasses antivirus

Green-hat-suite is a tool to generate meterpreter/shell which could evade antivirus.

Python Remote Administration Tool (RAT) to gain meterpreter session

HERCULES is a special payload generator that can bypass antivirus softwares.

Python AV Evasion Tools

Malware sample exchange system and API intended for Anti-Virus companies and researchers.

Script to facilitate different functions and checks

Process Hacker 2 hiding from external applications

Generate YARA rules for OOXML documents.

Crypter - Python3 based builder and ransomware compiled to Windows executable using PyInstaller

🐺 Malware analysis platform

LD_PRELOAD rootkit

BLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture

Volatility plugins developed and maintained by the community

Robo Thief is a software for steal telegram session .

Scans PHP files for malwares and known threats

Virus Package ( For Educational Purposes )

Yara Based Detection Engine for web browsers

My personal Automated Malware Analysis Sandboxes and Services

A wrapper library around native windows sytem APIs

Simple Malware Downloader

Crypto Ransomware made with: - Go for encryption and decryption - PHP/MySQL for saving and retrieving keys.

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

A complete Grabber, sending data to a TCP server that you have to host and stocking all in a database.

InfectPE - Inject custom code into PE file [This project is not maintained anymore]

Code for my blog post on using S2E for malware analysis

Source code of Claw Key logger previously sold on HackForums

👨🏻‍💻 A great tool for Ethical Hackers, a malware programmed with Backdoor and Keylogger.

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

A Simple PE File Heuristics Scanners

EGESPLOIT is a golang library for malware development

🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)

TeleShadow - Telegram Desktop Session Stealer (Windows)

👁‍🗨 This script will simulate fake processes of analysis sandbox/VM software that some malware will try to avoid.

🔑 Decrypt chromium based browsers passwords, cookies, credit cards, history, bookmarks, autofill. Version > 80 is supported.

Malware for Discord, designed to steal passwords, tokens, and inject discord folders for long-term use.

A C2 project that controls a self-propagating MS17-010 worm.

著作《Windows APT Warfare：惡意程式前線戰術指南》各章節技術實作之原始碼內容

InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.

Research on malware creation and protection

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Using this tool, You can capture all WiFi Passwords stored on Windows Computer and mail them to your email account!

Binary instrumentation framework based on FRIDA

Malware Machine Learning

Adds the ability to send CarrierWave uploads to Attachment Scanner for virus and malware prevention.

Debian packaging of Linux Malware Detect (https://github.com/rfxn/linux-malware-detect)

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Collecting IOCs posted on Twitter

Capstone: Keylogger Trojan

恶意软件原理图

🐺 Malware analysis platform

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)

Simple prepender virus written in Rust

Malice AntiVirus Plugins

YARA malware query accelerator (web frontend)

Malware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)

Collection of phishing and malicious links that focuses on Steam and Discord scams.

🛡 List of categorized undesired hosts

Malware hashes for open source projects.