0xbigshaq / runtime-unpack
Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
☆42Updated 4 years ago
Alternatives and similar repositories for runtime-unpack:
Users that are interested in runtime-unpack are comparing it to the libraries listed below
- ☆33Updated 3 years ago
- ☆11Updated 3 years ago
- My try to implement a virtual CPU in C☆19Updated last year
- Run some secret code invisible from debugger single step.(x86 process on x64 windows only)☆24Updated 5 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- Windows Kernel Programming Experiments☆79Updated 2 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆38Updated 3 years ago
- Anti-analysis tool that obfuscates ELF files☆28Updated 4 years ago
- BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen☆45Updated 2 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆72Updated last year
- Slides from various conference talks☆36Updated last year
- A simple password-based PE encryptor for Windows 32-bit executables.☆51Updated 3 months ago
- Yet another Windows DLL injector.☆39Updated 3 years ago
- Samples from my book Windows Native API programming☆61Updated 3 weeks ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆29Updated last year
- "Mingw64 Driver Plus Plus": Mingw64, C++, DDK and (EA)STL made easy!☆38Updated 2 months ago
- Add an empty section to a PE file☆51Updated 7 years ago
- Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)☆20Updated 5 years ago
- A simple tool for detecting memory modifications to Windows API.☆22Updated 3 months ago
- ☆12Updated 3 years ago
- Simple ELF runtime packer for creating self-protecting binaries☆21Updated last year
- IAT-Obfuscation to make static analysis of executable harder.☆42Updated 3 years ago
- ☆38Updated last year
- A utility to fix intentionally corrupted UPX packed files.☆85Updated last year
- Alternative Windows C runtime for minimal binary size☆37Updated 9 years ago
- Python library to convert elf to os-independent shellcodes☆57Updated last year
- PoC for CVE-2022-21974 "Roaming Security Rights Management Services Remote Code Execution Vulnerability"☆60Updated 3 years ago
- A tool/library to proxify DLL☆38Updated 3 years ago
- Work with eBPF on Windows☆36Updated last month
- A simple anti-rootkit Linux kernel module for an 'Operating Systems Security' course.☆15Updated 3 years ago