Eronana / packer

Related projects ⓘ

Alternatives and complementary repositories for packer

• XShar / Run_pe_cryptor_frame
  Фреймворк криптора/протектора с антиэмуляцией
  ☆31Updated 5 years ago
• TheAenema / hm-pe-packer
  A x64 PE Packer/Protector Developed in C++ and VisualStudio
  ☆50Updated last year
• windpiaoxue / sc4cpp
  sc4cpp is a shellcode framework based on C++
  ☆87Updated 3 years ago
• d35ha / xObf
  Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
  ☆253Updated 2 years ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆50Updated 7 years ago
• A-Normal-User / NtSocket_NtClient_NtServer
  Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock（利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能）
  ☆99Updated 2 years ago
• MahmoudZohdy / APICallProxy
  Windows API Call Obfuscation
  ☆94Updated last year
• cs1ime / DICHook
  Hook NtDeviceIoControlFile with PatchGuard
  ☆101Updated 2 years ago
• Flawww / ObfuscatedJumpGenerator
  Dynamically generated obfuscated jumps and/or function calls
  ☆33Updated last year
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆73Updated 4 years ago
• magnusstubman / dll-exports
  Collection of DLL function export forwards for DLL export function proxying
  ☆91Updated last year
• estimated1337 / lenovo_exec
  CVE-2022-3699 with arbitrary kernel code execution capability
  ☆70Updated last year
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆32Updated 3 years ago
• w1u0u1 / kinject
  Kernel shellcode injector
  ☆144Updated 3 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆143Updated 5 years ago
• HadesW / HttpRAT
  HTTPS GET RAT and Memory Loader
  ☆25Updated 2 years ago
• hz86 / peloader
  内存加载DLL 支持X86和X64（Memory PELoader Support X86 and X64）
  ☆30Updated last year
• fobricia / KsDumper
  Dumping processes using the power of kernel space !
  ☆19Updated 4 years ago
• horsicq / die_library
  ☆28Updated this week
• paskalian / WID_LoadLibrary
  Reverse engineering winapi function loadlibrary.
  ☆70Updated last year
• nbs32k / inline-syscall
  Inline syscalls made for MSVC supporting x64 and WOW64
  ☆175Updated last year
• SweetIceLolly / Prevent_File_Deletion
  Record & prevent file deletion in kernel mode
  ☆40Updated 4 years ago
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆115Updated 2 years ago
• aaaddress1 / SignThief
  Windows PE Signature Thief in C++
  ☆50Updated 4 years ago
• UserExistsError / DllLoaderShellcode
  Shellcode to load an appended Dll
  ☆89Updated 4 years ago
• aaaddress1 / wowGrail
  PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)
  ☆102Updated 3 years ago
• jackullrich / syscall-detect
  PoC capable of detecting manual syscalls from usermode.
  ☆183Updated this week
• m417z / LdrDllNotificationHook
  Hook all callbacks which are registered with LdrRegisterDllNotification
  ☆83Updated last year
• bluesadi / Heavens-Gate
  Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.
  ☆67Updated 3 years ago
• zodiacon / winnativeapibooksamples
  Samples from my book Windows Native API programming
  ☆57Updated 4 months ago