HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

C/C++ Black Angel Rootkit [C++]

Status
Not open for further replies.
itsMe

itsMe

*KillmeMories*
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Jan 8, 2019
Messages
56,607
Solutions
2
Reputation
32
Reaction score
100,454
Points
2,313
Credits
32,590
‎6 Years of Service‎
 
76%
screenshot-11672.png


Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.

Designed for Red Teams.

Rootkit Features

Rootkit can be loaded with kdmapper to bypass DSE, Black Angel Loader may not be working properly yet. Project driver-hijack is used to maintain full driver functionality such as callback support.

    DSE Bypass (No need to turn test signing on)
    KPP Bypass
    Hide processes
    Hide ports (TCP/UDP)
    Process permission elevation
    Process protection
    Shellcode injector (Unkillable shellcode. Even if process dies, shellcode can still run)
    (TODO) Hide files/directories
    (TODO) Hide registry keys

To see this hidden content, you must like this content.
 
Status
Not open for further replies.
Back
Top