BreakingMalware / PowerLoaderExLinks
PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
☆368Updated 8 years ago
Alternatives and similar repositories for PowerLoaderEx
Users that are interested in PowerLoaderEx are comparing it to the libraries listed below
Sorting:
- ☆398Updated 8 years ago
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆324Updated 8 years ago
- windows syscall table from xp ~ 10 rs4☆353Updated 6 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆434Updated 6 years ago
- Persistent IAT hooking application - based on bearparser☆258Updated 2 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆362Updated 5 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆324Updated 7 years ago
- zer0m0n driver for cuckoo sandbox☆362Updated 10 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆394Updated 5 years ago
- A set of tutorials about code injection for Windows.☆311Updated 9 months ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆224Updated 2 years ago
- WinDBG Anti-RootKit Extension☆630Updated 4 years ago
- Patching ROP-encoded shellcodes into PEs☆186Updated 7 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆520Updated 5 years ago
- Recon 2015 Presentation from Alex Ionescu☆239Updated 9 years ago
- ☆515Updated 7 years ago
- Kernel rootkit, that lives inside the Windows registry values data☆496Updated 7 years ago
- PatchGuard Research☆301Updated 6 years ago
- Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique☆152Updated 6 years ago
- Mirror of users section of rootkit.com☆297Updated 8 years ago
- Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+☆741Updated 7 years ago
- Source from VMDE paper, adapted to 2015☆182Updated 7 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆298Updated 6 years ago
- Simple VM based x86 PE (portable exectuable) protector.☆347Updated 10 years ago
- A tool to detect and crash Cuckoo Sandbox☆295Updated 10 months ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆604Updated 7 years ago
- Win64/Rovnix - Volume Boot Record Bootkit☆174Updated 9 years ago
- ☆244Updated 10 years ago
- PE permutation library☆273Updated 2 years ago
- Pocs for Antivirus Software‘s Kernel Vulnerabilities☆263Updated 7 years ago