0xcpu / bonomenLinks
BONOMEN - Hunt for Malware Critical Process Impersonation
☆49Updated 4 years ago
Alternatives and similar repositories for bonomen
Users that are interested in bonomen are comparing it to the libraries listed below
Sorting:
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- Exposing the Neutrino EK: All the Naughty Bits (BSidesLV16)☆15Updated 8 years ago
- Print the strings of encoded printable characters in files☆12Updated 10 years ago
- Swiss Army knife for raw bytes manipulation & interception☆56Updated 2 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- Resolves DLL API entrypoints for a process w/ remote query capabilities.☆55Updated 8 years ago
- collection of useful shells for penetration tests☆37Updated 8 years ago
- Here comes the paintrain!☆11Updated 8 years ago
- A Generic Windows Memory Scraping Tool☆71Updated 8 years ago
- Scripts for communication with Bunitu Trojan C&Cs☆17Updated 9 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- An offensive bash script which tries to find GENERIC privesc vulnerabilities and issues.☆13Updated 7 years ago
- ☆13Updated 9 years ago
- Emofishes is a collection of proof-of-concepts that help improve, bypass or detect virtualized execution environments (focusing on the on…☆15Updated 2 years ago
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Updated 8 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- API functions for Malware Research☆35Updated 6 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- Experimental: Windows .text section compare - disk versus memory☆14Updated 10 years ago
- Memory searching utilities☆42Updated 11 years ago
- Local enumeration and exploitation framework.☆18Updated 7 years ago
- Remote timing attack exploit against most Zeus/Zbot variants including Citadel, Ice9, Zeus 2.3, KINS/ZeusVM etc..☆24Updated 9 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Updated 8 years ago
- PAC HTTPS leak demo from DEF CON 24 'Toxic Proxies' talk☆30Updated 8 years ago
- CVE-2017-5689 Proof-of-Concept exploit☆56Updated 8 years ago
- Linux-KVM with rVMI extensions☆22Updated 7 years ago
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 10 years ago
- Mapping of Binaries that allows Arbitrary Code Execution☆26Updated 7 years ago
- A simple reflective dll example☆19Updated 8 years ago
- ☆10Updated 7 years ago