JoneyYang / PE-TOOLS
解析PE文件,对PE文件进行静态变形,简单的加密壳。
☆10Updated 4 years ago
Alternatives and similar repositories for PE-TOOLS:
Users that are interested in PE-TOOLS are comparing it to the libraries listed below
- ☆82Updated 4 years ago
- Win7内核私有符号结构转储☆68Updated 3 years ago
- ida提取特征码脚本☆55Updated 5 years ago
- A poc of embedding x64 code into x86 PE file☆17Updated 5 years ago
- a plugin for ida of version 7.2 to help know F5 window codes better☆54Updated 5 years ago
- 使用C++控制台实现的加壳器☆81Updated 6 years ago
- ollvm de-obfuscator☆59Updated 3 years ago
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆22Updated 2 years ago
- 基于Unicorn仿真PE模拟☆28Updated 2 years ago
- 一个可以帮助你进行Windows驱动开发和分析的工具。☆44Updated 3 years ago
- 大数字驱动逆向代码☆71Updated last year
- ☆31Updated 4 years ago
- If you are cracking a mfc program, you may find this useful.☆68Updated 11 years ago
- IDA高级技巧 API符号自动识别库 IDASignMaker☆129Updated 4 years ago
- Intel Virtualization Technology demo☆65Updated 8 years ago
- ☆45Updated 6 years ago
- win32下的虚拟机保护壳☆139Updated 10 years ago
- 一个将 vmnote 指令集重编译成 x64 指令集的脚本,并且可以用 IDA 进行分析。☆14Updated 3 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆99Updated 4 years ago
- 卓然主动防御源码(可执行文件+完整源码+完整作品报告)☆15Updated 6 years ago
- 一个用来做windows内核hook的框架☆86Updated 11 months ago
- 简单的二进制加密壳☆11Updated 4 years ago
- 用于存放IDA的研究资料和文档☆94Updated 4 years ago
- ☆13Updated 4 years ago
- PE解析器,功能包括对可执行文件的16进制解析,PE头、文件头、导入表、导出表等解析以及文件位置计算、添加节、脱壳Dump等☆16Updated 3 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- WIN64驱动编程基础教程-源码 作者:胡文亮☆88Updated 7 years ago
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆40Updated 2 years ago
- 安全卫士r3工具集☆37Updated 5 years ago
- ☆18Updated 2 years ago