Ghidra script which fully parses COFF files
☆12Oct 18, 2024Updated last year
Alternatives and similar repositories for GhidraCOFFParser
Users that are interested in GhidraCOFFParser are comparing it to the libraries listed below
Sorting:
- my n00b notes on web_study☆16May 29, 2025Updated 9 months ago
- Minix 1.5 source code for the Atari ST☆13Feb 8, 2016Updated 10 years ago
- TCP/IP stack for Atari computers running TOS.☆18Aug 25, 2025Updated 6 months ago
- ☆12Nov 21, 2023Updated 2 years ago
- VCL-based UI components for system tools that use NtUtilsLibrary☆21Updated this week
- Research into COM☆19Jan 25, 2020Updated 6 years ago
- ☆37May 8, 2022Updated 3 years ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆63Jan 5, 2026Updated 2 months ago
- just manipulatin these here tokens yes sir nothing weird☆22Apr 18, 2022Updated 3 years ago
- Atari ST Rom Listings and Infos☆20Jul 30, 2021Updated 4 years ago
- ☆25Aug 2, 2023Updated 2 years ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆25May 4, 2024Updated last year
- ☆61Oct 24, 2025Updated 4 months ago
- A care package of useful bofs for red team engagments☆53Dec 6, 2024Updated last year
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆50Sep 1, 2023Updated 2 years ago
- A compatibility environment that can run M68000 MINIX 1.5 binaries, for example to enable building M68000 MINIX on a modern UNIX.☆30Dec 23, 2024Updated last year
- An aggressor script for Cobalt Strike to query Windows' GetLastError messages☆18Sep 25, 2022Updated 3 years ago
- Slide decks and/or materials from conference presentations☆56Nov 15, 2022Updated 3 years ago
- ☆31Sep 12, 2025Updated 5 months ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆32Nov 17, 2019Updated 6 years ago
- rpv-web is a browser based frontend for the rpv library☆27Nov 21, 2025Updated 3 months ago
- Automation Capable Multi Search 64 Bit Windows Memory Scanner☆28Apr 7, 2021Updated 4 years ago
- tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"☆178Nov 26, 2021Updated 4 years ago
- Listing UDP connections with remote address without sniffing.☆31Sep 26, 2023Updated 2 years ago
- ☆31Sep 23, 2022Updated 3 years ago
- ☆28Dec 28, 2017Updated 8 years ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆129Oct 4, 2024Updated last year
- A BOF to interact with COM objects associated with the Windows software firewall.☆109Oct 10, 2021Updated 4 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆42Aug 6, 2024Updated last year
- The TRS-XENIX Project☆37Jun 20, 2018Updated 7 years ago
- Quickly search for references to a GUID in DLLs, EXEs, and drivers☆74Dec 10, 2021Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- Official implementation for the paper "On deceiving malware classification with section injection"☆36Aug 16, 2022Updated 3 years ago
- Reverse Engineering and Debugging Malware☆32Feb 27, 2023Updated 3 years ago
- ☆36Oct 26, 2023Updated 2 years ago
- Python api for usage with cobalt strike's External C2 specification☆72Feb 15, 2018Updated 8 years ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆211Nov 12, 2025Updated 3 months ago
- C code to enable ETW tracing for Dotnet Assemblies☆32Aug 12, 2022Updated 3 years ago
- ☆36Jan 11, 2023Updated 3 years ago