Example/starter code for custom Windows application compatibility shims
☆38Dec 27, 2020Updated 5 years ago
Alternatives and similar repositories for CustomShim
Users that are interested in CustomShim are comparing it to the libraries listed below
Sorting:
- ☆12Aug 10, 2019Updated 6 years ago
- Port of Seatbelt in F#☆13Jul 12, 2020Updated 5 years ago
- Scripting language to work with native Win32 functions☆34Nov 22, 2018Updated 7 years ago
- PoC for hiding PE exports☆67Dec 19, 2020Updated 5 years ago
- A C++ syscall ID extractor for Windows. Developed, debugged and tested on 20H2.☆21May 25, 2021Updated 4 years ago
- Some eternal WIP stuff :)☆21Nov 18, 2025Updated 3 months ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- Corsair LL Access driver abuse☆24Apr 16, 2021Updated 4 years ago
- a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…☆18Jul 5, 2023Updated 2 years ago
- C Header Only Library for Virii☆11Nov 17, 2020Updated 5 years ago
- Windows Server 2K3 NT 5☆12Apr 17, 2021Updated 4 years ago
- MouseButtonClicker clicks the mouse so you don't have to!☆13Jul 10, 2020Updated 5 years ago
- A malicious KeePass plugin to exfiltrate the master key.☆15Oct 25, 2021Updated 4 years ago
- MiniSDK☆10Nov 8, 2021Updated 4 years ago
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14May 31, 2020Updated 5 years ago
- Simple code to resolve library functions at runtime☆10Jan 5, 2015Updated 11 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆192Mar 26, 2020Updated 5 years ago
- Dll that should grab the Version of ue4 that a game is running based on a sig.☆14Sep 10, 2020Updated 5 years ago
- CloudFlare Worker Shell☆14Aug 29, 2020Updated 5 years ago
- Take a list of URIs and print all the of the paths☆10Aug 16, 2020Updated 5 years ago
- "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), modify read-o…☆93Feb 14, 2026Updated 2 weeks ago
- Win32 keylogger that supports all (non-ime using) languages correctly☆53Dec 21, 2023Updated 2 years ago
- ☆31Dec 5, 2024Updated last year
- Miscellaneous examples for use with Cobalt Strike Beacon☆10Nov 19, 2020Updated 5 years ago
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆13May 20, 2023Updated 2 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆20Jul 31, 2019Updated 6 years ago
- ☆84Aug 26, 2024Updated last year
- Antivirus Emulator Fingerprints☆30Oct 12, 2018Updated 7 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Jan 9, 2022Updated 4 years ago
- ClipBanker Spy Trojan☆11Sep 10, 2024Updated last year
- Disable PPL via custom driver and dump lsass☆15Mar 13, 2021Updated 4 years ago
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- A small library to extend the functionality of GetModuleHandle and GetProcAddress to other processes☆16Mar 23, 2020Updated 5 years ago
- ☆20Mar 15, 2023Updated 2 years ago
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆36Jan 12, 2022Updated 4 years ago
- Repository of Microsoft Driver Block Lists based off of OS-builds☆43Apr 14, 2024Updated last year
- ☆64May 31, 2024Updated last year