Darkabode / amteLinks
Analysis and Modification Tool for Executables
☆17Updated 6 years ago
Alternatives and similar repositories for amte
Users that are interested in amte are comparing it to the libraries listed below
Sorting:
- User-mode part of Zerokit platform☆22Updated 6 years ago
- Zerokit shared code☆17Updated 6 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- find and kill injectedThreads from memory☆12Updated 9 years ago
- Call undocumented native functions in the windows kernel☆5Updated 3 years ago
- ☆19Updated 10 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 8 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- Common Malware Techniques☆14Updated 2 years ago
- User-mode hook bypassing method☆33Updated 8 years ago
- Shellcode injection using debugging APIs☆19Updated 11 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆27Updated 7 years ago
- Using Undocumented NTDLL Functions to Read/Write/Delete File☆18Updated 4 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 8 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆33Updated 7 years ago
- Notes my learning steps about Windows-NT☆23Updated 8 years ago
- Enumerate process modules manually☆9Updated 3 years ago
- Demonstrate the new FileDispositionInfoEx behavior☆14Updated 7 years ago
- Code injection via delay load libraries☆35Updated 7 years ago
- Anti-AV compilation☆44Updated 11 years ago
- windows create process with a dll load first time via LdrHook☆30Updated 8 years ago
- hooking KiUserApcDispatcher☆25Updated 8 years ago
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Updated 5 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- PE Infector/Cryptor source code☆15Updated 8 years ago
- Class implementation of PowerLoader injection technique☆32Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- ☆34Updated 7 years ago
- Scanning and identifying XOR encrypted PE files in PE resources☆28Updated 11 years ago
- Malwarebytes Antivirus CVE☆8Updated 7 years ago