MITRECND / picaboo
Specialized tool to dump Position Independent Code.
☆21Updated 4 years ago
Alternatives and similar repositories for picaboo:
Users that are interested in picaboo are comparing it to the libraries listed below
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆51Updated 6 years ago
- ☆15Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- ☆32Updated 2 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- A C# tool to send emails through Outlook from the command line or in memory☆29Updated 4 years ago
- A collection of shellcode hashes☆17Updated 6 years ago
- Walking the PEB in VBA☆22Updated 4 years ago
- A tool to create COM class/interface relationships in neo4j☆47Updated 2 years ago
- ☆14Updated 4 years ago
- Generate YARA rules for OOXML documents.☆37Updated last year
- Repository for LNK stuff☆28Updated 2 years ago
- AMSI detection PoC☆30Updated 4 years ago
- ☆24Updated 2 years ago
- Tool to manage user privileges☆28Updated 5 years ago
- Playing with PE's and Building Structures by Hand☆22Updated 2 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆27Updated last year
- C# port of LogServiceCrash☆45Updated 4 years ago
- A simple proof of concept for detecting use of Cobalt Strike's execute-assembly☆58Updated 2 years ago
- ☆36Updated 3 years ago
- A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.☆33Updated 3 years ago
- ☆28Updated 7 years ago
- ☆34Updated 2 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆50Updated 3 years ago
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- ☆10Updated 4 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 6 years ago
- Loads .NET Assembly Via CLR Loader☆15Updated 5 years ago