Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.
☆31Jun 5, 2024Updated last year
Alternatives and similar repositories for malstring
Users that are interested in malstring are comparing it to the libraries listed below
Sorting:
- single file header only library for getting virtual function offset from PMF☆13May 4, 2023Updated 2 years ago
- ☆33Jan 23, 2025Updated last year
- Collection of scripts that I created to make my life easier.☆12May 10, 2021Updated 4 years ago
- Detect suspend you process☆13Jun 7, 2023Updated 2 years ago
- Reverse engineering utilities library written in meta-modern c++☆52Jun 3, 2023Updated 2 years ago
- Executes Read/Write process memory with `NtQueryCompositionSurfaceStatistics`☆23Feb 10, 2024Updated 2 years ago
- ☆15Sep 26, 2021Updated 4 years ago
- BypassCredGuard CS BOF☆49Jan 23, 2025Updated last year
- Shellcode capable of bypassing EAF / IAF mitigations☆28Apr 11, 2023Updated 2 years ago
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- y4er的ysoserial修改版,加入mysql不出网pipe文件生成☆24Jan 30, 2026Updated last month
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆15Mar 23, 2025Updated 11 months ago
- A REALLY Danger Windows Driver, Turn Any threads Ring0!☆13Aug 11, 2025Updated 6 months ago
- EWDK C++ toolchain for bazel☆11Feb 1, 2026Updated 3 weeks ago
- An advanced singular header-only C++20 obfuscation library with encryption and polymorphism.☆68Updated this week
- Automated environment setup for Bootkit & Rootkit development.☆35Aug 9, 2025Updated 6 months ago
- A C++17 header-only library that provides compile-time string encryption and decryption using SIMD instructions and junk code injection.☆24Feb 15, 2026Updated last week
- Yescrypt Hash Cracker☆15Jan 13, 2026Updated last month
- ☆22Aug 16, 2025Updated 6 months ago
- R3劫持所有异常☆15Jan 4, 2021Updated 5 years ago
- ☆12May 21, 2025Updated 9 months ago
- An utility to download PDB files associated with a Portable Executable (PE).☆15Feb 18, 2025Updated last year
- havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…☆12May 8, 2023Updated 2 years ago
- Simple IOCTL hooking driver for Kernel- User - Mode communication.☆11Jul 26, 2020Updated 5 years ago
- Modern x64 anti-debug library☆10Oct 29, 2019Updated 6 years ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆18Oct 31, 2024Updated last year
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- Fully disables & removes Windows Defender☆36Jan 28, 2022Updated 4 years ago
- Finding SSL Blindspots for Red Teams☆34Jul 28, 2020Updated 5 years ago
- From C, Rust or Zig to binary shellcode compiler based on Mingw gcc. It allows using Win32 APIs and standard libraries without any change…☆53Sep 22, 2025Updated 5 months ago
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆37Jul 27, 2021Updated 4 years ago
- BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆17Jul 22, 2022Updated 3 years ago
- Packet Injection With WFP☆16Feb 20, 2023Updated 3 years ago
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆19Jul 8, 2022Updated 3 years ago
- A Patchless AMSI Bypass Technique using VEH²☆30Jun 22, 2025Updated 8 months ago
- 正确解析 _HEAP_VS_***符号 ,支持在最新win11 24h2 运行,替换windbg自带的!pool命令☆17Nov 30, 2024Updated last year
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 2 years ago
- A C# Source Generator for obfuscating string or byte array values using multi-byte xor encryption.☆14Jun 12, 2024Updated last year
- Just check hypervisor in ring0☆16Jun 7, 2023Updated 2 years ago