NexusFuzzy / NanoDump
Tool to decrypt the configuration of NanoCore and dump all used plugins
☆10Updated 3 years ago
Related projects: ⓘ
- ☆23Updated 2 years ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆50Updated 5 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- ☆23Updated 4 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆21Updated 2 years ago
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14Updated 4 years ago
- A tool to create COM class/interface relationships in neo4j☆47Updated last year
- ☆21Updated last year
- ☆12Updated this week
- A collection of shellcode hashes☆17Updated 6 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- Experiments on the Windows Internals☆30Updated 4 years ago
- ☆10Updated this week
- ☆15Updated 3 years ago
- API hashing written in C to load APIs indirectly using CRC32 hashing☆13Updated 4 years ago
- ☆14Updated 4 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆16Updated 7 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆33Updated 4 years ago
- ☆40Updated this week
- ☆17Updated 3 years ago
- Extended Process List (Search functionality)☆27Updated 3 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 2 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆49Updated 3 years ago
- A C port of b33f's UrbanBishop☆35Updated 3 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆19Updated 3 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆28Updated 2 years ago
- ☆11Updated this week