Kaiser File-less Persistence is a discontinued project with capabilities for attacks and anti-forensic activities on Windows 7 32-bit systems. To build and use, compile Kaiser.dll in Release mode, upload it for direct download, update BuildKaiser.ps1 with the URL, run the script to build Payload.ps1, upload Payload.ps1 for direct download, update BuildKaiser.ps1 with the URL of Payload.ps1, run BuildKaiser.ps1 to build Installer.ps1, and execute Installer.ps1 with administrative privileges on the target machine. Known bugs include threaded XxxNetSend sends buffering and PurgeXxx functions not guaranteed to work.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
An open source .NET deobfuscator and unpacker that restores packed and obfuscated assemblies by reversing various obfuscation techniques.
A collaborative malware analysis framework with various features for automated analysis tasks.
CAPA is a static analysis tool that detects and reports capabilities in executable files across multiple formats, mapping findings to MITRE ATT&CK tactics and techniques.
A static analysis tool for PE files that identifies potential malicious indicators through compiler detection, packing analysis, signature matching, and suspicious string identification.
An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.
Code to prevent a managed .NET debugger/profiler from working.