DissectMalware / yaradbg-backend
☆25Updated last year
Alternatives and similar repositories for yaradbg-backend:
Users that are interested in yaradbg-backend are comparing it to the libraries listed below
- ☆39Updated last year
- ☆18Updated 2 months ago
- Identifies metadata of .NET binary files.☆21Updated 11 months ago
- ☆28Updated 5 months ago
- Code samples that serve as references for Windows API functions☆30Updated 10 months ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 8 months ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆31Updated last year
- Progress of learning kernel development☆14Updated 2 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆26Updated 8 months ago
- An injector that use PT_LOAD technique☆12Updated 2 years ago
- ☆27Updated 4 months ago
- ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction☆13Updated 2 years ago
- A few examples of how to trap virtual memory access on Windows.☆28Updated 3 months ago
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆52Updated 3 months ago
- ☆17Updated 5 months ago
- A utility that can be used to launch an executable with a DLL injected☆18Updated last year
- ☆12Updated 2 years ago
- Adobe Reader DC Information Leak Exploit☆21Updated 2 years ago
- ☆25Updated 2 years ago
- Slides from various conference talks☆36Updated last year
- Finds imports that could be exploited, still requires manual analysis.☆27Updated 2 years ago
- rpv-web is a browser based frontend for the rpv library☆24Updated this week
- A Practical example of ELAM (Early Launch Anti-Malware)☆32Updated 3 years ago
- the Open Source and Pure C++ Packer for eXecutables☆18Updated 2 years ago
- Attack tool for altering packed samples so that they evade static packing detection☆16Updated 2 months ago
- genpatch is IDA plugin that generates a python script for patching binary☆32Updated last year
- ☆25Updated 5 months ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆65Updated last year
- example using NtCreateUserProcess in rust☆18Updated 2 months ago