☆40Nov 5, 2019Updated 6 years ago
Alternatives and similar repositories for WProtect
Users that are interested in WProtect are comparing it to the libraries listed below
Sorting:
- ☆15Jan 14, 2016Updated 10 years ago
- ☆39Jul 11, 2016Updated 9 years ago
- Packed Malware Analyzer (PACKMAN)☆12Jan 31, 2016Updated 10 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- (shard of furikuri project) assambler for code obfuscation☆19Oct 29, 2019Updated 6 years ago
- A windows kernel driver to Block symbolic link exploit used for privilege escalation.☆15Jul 30, 2020Updated 5 years ago
- Protected Process Light Library☆18Jun 20, 2020Updated 5 years ago
- ☆15Mar 4, 2021Updated 4 years ago
- first commit☆64Oct 29, 2020Updated 5 years ago
- D3D9Hook is a library simplifying a DirectX 9 hooking using a DLL injection. It includes basic drawing features such as rectangle drawing…☆14Jul 14, 2016Updated 9 years ago
- 横向移动三剑客 ( Lateral movement tools)☆30Nov 16, 2021Updated 4 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- ☆36Jun 20, 2022Updated 3 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆21May 25, 2021Updated 4 years ago
- ☆19Jul 20, 2015Updated 10 years ago
- windows api hooking (user mode) sample☆21Jul 24, 2014Updated 11 years ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆99Aug 27, 2022Updated 3 years ago
- A set of Windows 10+/VS2022/C++14 tools for working with software modifications in two files (Detours.h, Detours.cpp).☆46Feb 1, 2026Updated 3 weeks ago
- Example for PagedOut!☆26Oct 22, 2019Updated 6 years ago
- A WDM Windows driver to issue IO to storage devices with asynchronous multithreaded processing☆21Aug 28, 2016Updated 9 years ago
- Hypervisor based tool for monitoring system register accesses.☆154Sep 13, 2018Updated 7 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…☆18Jul 5, 2023Updated 2 years ago
- ☆24Nov 17, 2017Updated 8 years ago
- Windows PE file debugger☆11Aug 30, 2017Updated 8 years ago
- Some garbage drivers written for getting started☆65Dec 31, 2019Updated 6 years ago
- Very very useful example of loading and relocating the (Win32) DLL from memory (!) which allows many possibilities and much more flexibil…☆20Jan 2, 2013Updated 13 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Feb 26, 2014Updated 12 years ago
- APC注入DLL内核层☆23Dec 8, 2018Updated 7 years ago
- Scanning and identifying XOR encrypted PE files in PE resources☆30Jun 22, 2014Updated 11 years ago
- 内核级ARK工具。☆62Aug 1, 2016Updated 9 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- 新的注入方式☆11Sep 30, 2018Updated 7 years ago
- VMProtect OD Plugin☆95Apr 16, 2016Updated 9 years ago
- Miscellaneous IDA scripts and projects☆15Apr 14, 2021Updated 4 years ago
- EDR PoC WIP LLC☆10Feb 9, 2024Updated 2 years ago
- IDA scripts that facilitate reverse engineering☆16Aug 10, 2016Updated 9 years ago
- DllInject (Memory Load)☆11Jan 5, 2019Updated 7 years ago