KingKDot / ExorcismLinks
The first open source runtime windows batch and command line deobfuscator
☆38Updated last month
Alternatives and similar repositories for Exorcism
Users that are interested in Exorcism are comparing it to the libraries listed below
Sorting:
- Ransomware written in go, encrypt - decrypt.☆29Updated 4 months ago
- Advanced dynamic malware analysis tool.☆83Updated last year
- ☆45Updated 11 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆24Updated 5 months ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆31Updated 5 years ago
- Nim process hollowing loader☆59Updated last month
- A Bumblebee-inspired Crypter☆79Updated 2 years ago
- Windows syscall SDK with dynamic offset resolution, validation, obfuscation, and multi language bindings. Bypass API hooks across differe…☆47Updated this week
- The best powershell obfuscator ever made☆112Updated last month
- simple user-mode Rootkit☆105Updated 2 years ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆65Updated 2 years ago
- using the gpu to hide your payload☆59Updated 3 years ago
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Updated 2 years ago
- ☆12Updated 11 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆79Updated 3 months ago
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆46Updated last year
- Unpacker and Config Extractor for managed Redline Stealer payloads☆42Updated 2 years ago
- A 64 bit executable junk code engine for polymorphic malware.☆69Updated 3 months ago
- Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.☆41Updated 4 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆50Updated 4 months ago
- kernel-mode DLL Injector☆110Updated 4 months ago
- ☆37Updated last year
- Troll TaskManager, and play with it .☆26Updated last month
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆14Updated 9 months ago
- "Service-less" driver loading☆161Updated 9 months ago
- Standalone Metasploit-like XOR encoder for shellcode☆50Updated last year
- Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…☆89Updated 2 months ago
- ☆27Updated 11 months ago
- Golang bindings for PE-sieve☆42Updated last year
- A unique introduction to native runtime obfuscation.☆65Updated 6 months ago