MahmoudZohdy / DLL-Obfuscation-V2
Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.
☆18Updated 3 years ago
Alternatives and similar repositories for DLL-Obfuscation-V2:
Users that are interested in DLL-Obfuscation-V2 are comparing it to the libraries listed below
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆19Updated 3 years ago
- DLL-Obfuscation, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.☆16Updated 3 years ago
- x64 Windows privilege elevation using anycall☆21Updated 3 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆42Updated 3 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆17Updated 3 years ago
- ☆27Updated 2 years ago
- An attempt at reversing WindowsDefender☆20Updated 6 months ago
- A kernel mode Windows rootkit in development.☆48Updated 3 years ago
- ☆8Updated 9 months ago
- Phantom DLL Hollowing method implemented in modmap☆17Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- Rookit and anti rookit on Windows platform☆12Updated 11 months ago
- Dump mapped PE files from memory to the disk☆19Updated 5 years ago
- Using Thread Description To Hide Shellcodes☆14Updated 2 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆22Updated last year
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆18Updated 2 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 3 years ago
- vmware-backdoor☆33Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- Detour hooking IRQ1 ISR through IDT (Interrupt Descriptor Table)☆20Updated last year
- manual mapping injector☆27Updated 2 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- Wow64 Heaven's Gate Hook☆28Updated 3 years ago
- Subtract one PE file from another!☆21Updated 3 years ago
- using the Recycle Bin to insure persistence☆12Updated 2 years ago
- Load Dll into Kernel space☆38Updated 2 years ago
- neat way to detect memory read using nt layer function.☆14Updated last year
- Yet another Windows DLL injector.☆38Updated 3 years ago
- collection of code snippets,windbg,python scripts and resources☆13Updated 2 years ago
- Protected Process Light Library☆18Updated 4 years ago