Skip to content
/ maldev Public

Collection of experiments on malware dev for red teaming

3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

himazawa/maldev

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
codeInjection
codeInjection
 
 
dllinjection
dllinjection
 
 
internal/utils
internal/utils
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

MalDev

This is a collection of malware development techniques in Golang. The main (and only) target is Windows.

Payload Injection

This is a simple injection, using VirtualAlloxEx and CreateRemoteThread to execute a payload from a target process.

Build:

go build codeinjection/main.go

Usage:

codeinjection.exe -target="msdev.exe"

The shellcode is located in codeinjection/data/shellcode.bin and will be embedded at build time, feel free to change it or write your own.

DLL Injection

Same as payload injection but instead of injecting the full payloads, it writes the path to a dll in the target process and then execute it using LoadLibraryA

Build:

go build dllinjection/main.go

Usage:

dllInjection.exe -target="msdev.exe" -dll="C:\fullpath\to\inject.dll

About

Collection of experiments on malware dev for red teaming

Topics

windows winapi malware infosec

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Packages

No packages published

Languages