HexHive / malWASHLinks
☆115Updated 8 years ago
Alternatives and similar repositories for malWASH
Users that are interested in malWASH are comparing it to the libraries listed below
Sorting:
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- FLARE Kernel Shellcode Loader☆178Updated 6 years ago
- Simple library to spray the Windows Kernel Pool☆109Updated 5 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆85Updated 3 years ago
- Smart DLL execution for malware analysis in sandbox systems☆144Updated 10 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆117Updated 8 years ago
- Script analysis tool based on Frida.re☆128Updated 8 years ago
- heaper, an advanced heap analysis plugin for Immunity Debugger☆98Updated 12 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆120Updated 6 years ago
- kernel exploitation helper class☆77Updated 8 years ago
- ☆91Updated 8 years ago
- Zerokit/GAPZ rootkit (non buildable and only for researching)☆182Updated 6 years ago
- ☆43Updated 6 years ago
- Frida.re based RunPE (and MapViewOfSection) extraction tool☆112Updated 8 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆123Updated 6 years ago
- Windows API tracer for malware (oldname: unitracer)☆118Updated 7 years ago
- a program to detect reflective dll injection on a live machine☆74Updated 9 years ago
- Some example source code for fixed IE11 sandbox escapes.☆141Updated 10 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆117Updated 6 years ago
- Reflective Polymorphism☆104Updated 6 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆94Updated 4 years ago
- A C/C++ implementation of Microsoft's Antimalware Scan Interface☆182Updated 7 years ago
- Various Yara signatures (possibly to be included in a release later).☆86Updated 6 years ago
- HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass☆63Updated 7 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆150Updated 7 years ago
- Patching ROP-encoded shellcodes into PEs☆186Updated 7 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆96Updated 4 years ago