360trev / PELoadFromRam
Very very useful example of loading and relocating the (Win32) DLL from memory (!) which allows many possibilities and much more flexibility to dynamically link code from many sources including realtime download from the web and also code signing!
☆21Updated 12 years ago
Alternatives and similar repositories for PELoadFromRam:
Users that are interested in PELoadFromRam are comparing it to the libraries listed below
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆15Updated 8 years ago
- ☆13Updated 7 years ago
- Ssdt Hook Detection tool☆12Updated 8 years ago
- Kernel (Ring0) - SSDT unhook driver☆14Updated 6 years ago
- wow64 syscall filter☆13Updated 10 years ago
- simple plugin for lastest olly versions to display the callstack☆16Updated 11 years ago
- F**k ssdt hook in np, tp, hs☆10Updated 10 years ago
- PE Infector/Cryptor source code☆15Updated 7 years ago
- 使用SSDT HOOK 在windows上隐藏指定文件或者文件夹☆26Updated 3 years ago
- A library that allows hook any imported function from the IAT (works only in x64)☆11Updated 5 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 8 years ago
- Analysis and Modification Tool for Executables☆16Updated 5 years ago
- Framework complet d'analyse de malware☆12Updated 8 years ago
- ☆16Updated 8 years ago
- TrueCrypt 7.2 — (Source Codes)☆8Updated 7 years ago
- Inject codes to another process to watch and operate other process. This is usually used as anti-virus software.☆10Updated 9 years ago
- Packer for PE and ELF, 32 and 64bits.☆22Updated 11 years ago
- Zerokit shared code☆16Updated 5 years ago
- opensc RAT from http://hi.baidu.com/yycblog/item/b8f0cdf9c1f945c10cd1c8da☆12Updated 10 years ago
- reversed emet tool☆24Updated 12 years ago
- ☆25Updated 4 years ago
- A c++, QT gui based memory engine☆13Updated 6 years ago
- ☆14Updated 9 years ago
- metasploit loader with antivirus bypass module☆17Updated 8 years ago
- use crystalCPUID to identify vt-x & amd-v☆16Updated 9 years ago