93aef0ce4dd141ece6f5 / Packer

Related projects ⓘ

Alternatives and complementary repositories for Packer

• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆41Updated last month
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆50Updated 9 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆34Updated 6 years ago
• jnastarot / soul_eater
  it can extract functions from .dll, .exe, .sys and it be work! :)
  ☆38Updated 5 years ago
• Trietptm-on-Coding-Algorithms / ZeroBank-ring0-bundle
  Kernel-Mode rootkit that connects to a remote server to send & recv commands
  ☆31Updated 6 years ago
• KbaHaxor / Ammyy-v3
  Ammyy v3 Source Code leak , with ❤️ <3
  ☆36Updated 7 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆18Updated 8 years ago
• gerronjo / openlibs
  Open Source Libraries Collection
  ☆24Updated 8 years ago
• AntiRootkit / BDArkit
  just an lite AntiRootkit for interesting
  ☆23Updated 8 years ago
• John-Yu / Simple_PE_packer
  The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…
  ☆19Updated 7 years ago
• mgeeky / PE-library
  Lightweight Portable Executable parsing library and a demo peParser application.
  ☆72Updated last year
• wes4m / unHooker
  Kernel (Ring0) - SSDT unhook driver
  ☆13Updated 6 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• zodiacon / KernelObjectView
  View handles and object for each object type
  ☆63Updated 5 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆55Updated 5 years ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆75Updated 9 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 3 years ago
• jnastarot / cleancall
  Library for using direct system calls
  ☆35Updated 4 years ago
• waleedassar / SyscallNumberFinder
  ☆32Updated 3 years ago
• OlSut / Kinject-x64
  Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.
  ☆32Updated 9 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆59Updated 8 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆52Updated 8 months ago
• azerg / PackerPE
  simple PE packer written in C++
  ☆54Updated 6 years ago
• whitephone / Windows-Rootkits
  ☆26Updated 7 years ago
• BrunoMCBraga / Kernel-Whisperer
  ☆27Updated 3 years ago