fileless-malware

Here are 22 public repositories matching this topic...

RuoJi6 / xxl-job-FLM

xxl-job内存马

xxl-job attck fileless-malware memory-resident-malware

Updated
Java

An open-source, C#-based remote administration tool (RAT), enabling complete control of a remote Windows machine, designed for legitimate remote administration and security testing of Windows systems.

windows monitor backdoor dotnet trojan cybersecurity penetration-testing rat penetration cyber-security hacktool remote-access-trojan remote-access-tool remote-administration-tool cybersecurity-education windows-rat fileless-attack remote-administrative-tool remote-administration-trojan fileless-malware

Updated
C#

iss4cf0ng / IronPE

Star

IronPE is a Windows PE manual loader written in Rust for both x86 and x64 PE files.

windows rust x64 executable poc x86 pe-loader pe-file fileless windows-rust fileless-malware rust-loader

Updated
Rust

ELMERIKH / PyinMemoryPE

Star

execute PE in memory Filelessly

pe-loader redteam-tools pe-injection fileless-attack evade-av redteaming-tools fileless-malware pe-file-injector python-pe-injector fileless-pe-injector

Updated
Python

iss4cf0ng / dotNetPELoader

Star

A C# PE loader for x64 and x86 PE files.

csharp dotnet x64 x86 csharp-code pe-file fileless peloader fileless-attack fileless-malware fileless-pe-injector fileless-injection x86loader x64loader

Updated
C#

iss4cf0ng / Elfina

Star

Elfina is a multi-architecture ELF loader written in Rust, supporting x86 and x86-64 binaries.

linux rust entropy linux-kernel elf hexdump c-language elf-loader elf-parser disasm c-lang elf-files fileless linux-elf fileless-malware elfina

Updated
Rust

baycysec / plaguards

Star

Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams. [Presented at Black Hat Asia and USA 2025 Arsenal]

python linux open-source ioc powershell deobfuscation pdf-report django-project fileless-malware plaguards

Updated
Python

👁 FUD-Crypter-Bypass-Windows-Defender

Workaholic9 / FUD-Crypter-Bypass-Windows-Defender

Star

Origami Crypter with an updated version of the stub that bypasses windows defender.

packer backdoor dotnet malware crypter fud av-bypass crypter-fud reflective-loading fud-crypter defender-bypass wd-bypass fileless-malware

Updated

cybersecurity-dev / awesome-fileless-malware-scientific-research

Star

Awesome Fileless Malware Scientific Research

awesome awesome-list awesome-lists scientific-research fileless-attack fileless-malware filelessmalware

Updated

👁 Crypter-For-Sale-Bypassing-Windows-Defender

capitalcalculatorboy / Crypter-For-Sale-Bypassing-Windows-Defender

Star

Selling crypter / crypter services bypassing windows defender. Private stub for each purchase. 50 dollars.

obfuscation malware rat obfuscator crypter fud crypter-fud fud-crypter fileless-malware crypter-service

Updated

cybersecurity-dev / awesome-fileless-malware

Star

Awesome Fileless Malware

awesome malware awesome-list malware-development awesome-lists fileless-malware

Updated

Kovax00 / APT-Style-PowerShell

Star

Proof of Concept que replica la técnica de evasión avanzada utilizada por APT35 (Charming Kitten) en su backdoor "PowerLess" (2021-2022).

powershell powershell-script offensive-security ethical-hacking red-team mitre-attack fileless-malware evasion-techniques apt-techniques apt35

Updated

autopark530-rgb / Ransom-Win32-HelloMutex.A

Star

For educational and cybersecurity purposes.

windows ioc pentesting dll-injection malware-analysis mitre-attack threat-detection living-off-the-land wsl2 dns-attacks cve-research fileless-malware vibe-coding ransomware-dectection

Updated
HTML

cybersecurity-dev / Fileless-Malware-Cookbook

Star

Fileless Malware Cookbook

malicious-scripts fileless-malware malicious-script filelessmalware malicious-powershell-scripts malicious-powershell-script malicious-bash-scripts malicious-bash-script

Updated

mazen91111 / GhostWrite

Star

Fileless Persistence Engine -- 7 techniques that survive reboot without writing a single file to disk. Pure Go.

golang persistence wmi red-team mitre-attack windows-security com-hijacking fileless-malware

Updated
Go

Compcode1 / ioc21-cradle-powershell

Star

This case, centered on a PowerShell download cradle, illustrates one of the most common but under-analyzed threats in modern enterprise environments.

powershell-cradles fileless-malware script-block-logging event-id-4104 host-based-triage

Updated
Jupyter Notebook

Sayan690 / Weaponised-DFE

Star

Fetch a remote C# Assembly and execute it in memory using Assembly.Load

flask csharp dotnet python3 ssl-certificates tls-certificate command-and-control dotnet-assembly fileless-malware

Updated
Python

3lvin-Kc / RustC2-main

Star

This is a lightweight Command and Control (C2) tool built with Rust, featuring a minimal set of core functionalities

rust c2 fileless-malware

Updated
Rust

mazen91111 / SilentLoader

Star

Linux In-Memory ELF Loader -- Execute binaries from memory via memfd_create, /proc/self/mem, shm_open. Zero disk artifacts. Bash + Python.

linux bash red-team elf-loader process-injection in-memory-execution fileless-malware memfd-create

Updated
Python

blwhit / Tripwire

Star

Digital forensics tool to detect and snapshot malware file events during dynamic analysis. Catch malware creating/deleting files.

reflection incident-response reverse-engineering malware-analysis forensic-analysis fileless-malware

Updated
Python

Improve this page

Add a description, image, and links to the fileless-malware topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the fileless-malware topic, visit your repo's landing page and select "manage topics."

Learn more

URL: https://github.com/topics/fileless-malware