DissectMalware / yaradbg-backend

Related projects ⓘ

Alternatives and complementary repositories for yaradbg-backend

• DissectMalware / yaradbg-frontend
  ☆37Updated 9 months ago
• rbmm / Services
  ☆18Updated last year
• AnastasiKro / ALPChecker
  ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction
  ☆13Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆30Updated last year
• connormcgarr / Presentations
  ☆26Updated 3 weeks ago
• Offensive-Panda / MalwareAnalysis
  This central repository is crafted for cybersecurity enthusiasts, researchers, and professionals aiming to advance their skills. It offer…
  ☆12Updated 2 weeks ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year
• rhotav / PT_LOAD-Injector
  An injector that use PT_LOAD technique
  ☆11Updated last year
• lem0nSec / Alcatraz
  An example of Windows self-replicating malware.
  ☆10Updated last year
• Xre0uS / KiD
  A malicious keyboard that delivers a multi-staged attack, consisting of a trojan payload which can bypass antivirus, with Windows machine…
  ☆10Updated 2 years ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆21Updated 4 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆10Updated last year
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆23Updated 4 months ago
• xoreaxecx / PEmimic
  A PE morphing tool that allows you to mimic one executable file to another.
  ☆11Updated 11 months ago
• splexas / TrampHooker
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆20Updated last month
• fin3ss3g0d / HookFinder
  Simple PoC to locate hooked functions by EDR in ntdll.dll
  ☆32Updated last year
• exploits-forsale / CVE-2024-26218
  Proof-of-Concept for CVE-2024-26218
  ☆46Updated 6 months ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated 7 months ago
• anyrun / blog-scripts
  ☆24Updated last month
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated last year
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆25Updated 3 months ago
• listinvest / undonut
  Unpacker for donut shellcode
  ☆10Updated 4 years ago
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆15Updated last week
• yoavshah / ImportlessApi
  ☆18Updated 11 months ago
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆21Updated 4 months ago
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆28Updated 2 months ago
• decalage2 / collisions
  Hash collisions and their exploitations
  ☆9Updated 2 years ago