01Xyris / XyrisPackLinks
x86 packer in masm, process hollowing, remapping ntdll
☆10Updated 7 months ago
Alternatives and similar repositories for XyrisPack
Users that are interested in XyrisPack are comparing it to the libraries listed below
Sorting:
- ☆24Updated 6 months ago
- I/O Cache-As-Ram + AMD x86_64 cache line locking | Mirror of https://codeberg.org/3itch/icekit☆14Updated 3 months ago
- Easy encrypt/decrypt data with TPM☆25Updated last year
- A curated list of awesome resources related to anti virtualization techniques☆52Updated 2 months ago
- OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"☆42Updated last year
- A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support☆62Updated last week
- Michelangelo REanimator bootkit and REcon 2023 talk slides/materials☆30Updated last year
- Signature finder (from PE-bear)☆36Updated 2 months ago
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆85Updated last month
- curiosity got me here☆41Updated 11 months ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated last year
- bypassing intel txt's tboot integrity checks via coreboot shim☆70Updated 3 months ago
- A native Windows library for intercepting kernel-to-user transitions using instrumentation callbacks☆21Updated last year
- Windows kernel driver template for cmkr and llvm-msvc.☆35Updated last year
- rpv-web is a browser based frontend for the rpv library☆25Updated last month
- ☆18Updated 4 months ago
- bootlicker: A terribly written but functioning UEFI shellcode bootkit patched into a firmware volume or boot device on the EFI partition☆27Updated 4 months ago
- ☆31Updated 4 months ago
- A few examples of how to trap virtual memory access on Windows.☆31Updated 6 months ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆30Updated 10 months ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆112Updated 9 months ago
- Another UEFI runtime bootkit☆29Updated 2 years ago
- ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.☆113Updated 2 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated last week
- UEFI bootkit: Hardware Implant. In-Progress☆16Updated 3 years ago
- Dreg's setup for lldb reversing. The simplest and easiest possible, without scripting. lldb debugging setup.☆14Updated last year
- Simple, fast and lightweight Header-Only C++ Assembler Library☆62Updated 2 weeks ago
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 3 months ago
- Rule Engine for Dynamic Malware Analysis and Research☆22Updated 2 months ago
- This master thesis project continuously collects and analyses Microsoft Windows kernel drivers using static and dynamic methods to help s…☆20Updated 7 months ago