Blueliv / maze-deobfuscation
☆12Updated 4 years ago
Related projects: ⓘ
- Hansel - a simple but flexible search for IDA☆25Updated 5 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆38Updated 4 years ago
- My conference presentations and publications☆26Updated 2 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆36Updated 5 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆88Updated 5 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆53Updated 7 years ago
- Allows IDA PRO to disassemble x86-64 code (WOW64) in 32-bit database☆24Updated 2 years ago
- Exploits for YARA 3.7.1 & 3.8.1☆30Updated 5 years ago
- Simple library to spray the Windows Kernel Pool☆102Updated 4 years ago
- ☆33Updated this week
- Flare-On solutions☆36Updated 4 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆25Updated 7 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆22Updated last year
- Windows Injection 101: from Zero to ROP (HITCON 2017)☆25Updated 7 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 6 years ago
- Public repository for HEVD exploits☆20Updated 6 years ago
- ☆39Updated 3 years ago
- ☆46Updated 7 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆91Updated 2 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆30Updated 3 months ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆45Updated 5 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆41Updated 8 months ago
- ☆34Updated this week
- Go Lang Portable Executable Parser☆37Updated 3 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 4 years ago
- The place where my HackSys Extreme Vulnerable Driver exploits go.☆25Updated 5 years ago
- ☆33Updated 3 years ago
- ☆28Updated 4 years ago
- The Minimalistic x86/x64 API Hooking Library for Windows☆32Updated 6 years ago