NtRaiseHardError / NoREplsLinks
NoREpls - Application designed for the purposes of reverse engineering.
☆11Updated 6 years ago
Alternatives and similar repositories for NoREpls
Users that are interested in NoREpls are comparing it to the libraries listed below
Sorting:
- Static analysis tools for x86 assembly☆13Updated 8 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- ☆34Updated 7 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 8 years ago
- A wrapper for capstone for bearparser☆14Updated 2 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- Analysis and Modification Tool for Executables☆16Updated 6 years ago
- Shellcode injection using debugging APIs☆19Updated 11 years ago
- An IDA Pro script for creating a clearer idb for nymaim malware☆10Updated 7 years ago
- A collection of anti disassembly techniques☆19Updated 7 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- Code Injector Using Code Caves☆14Updated 9 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Updated 9 years ago
- Zerokit shared code☆16Updated 6 years ago
- ☆28Updated 8 years ago
- User-mode part of Zerokit platform☆20Updated 6 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆15Updated 7 years ago
- ☆16Updated 7 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- ☆20Updated 5 years ago
- hooking KiUserApcDispatcher☆24Updated 8 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆26Updated 6 years ago
- A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…☆18Updated 7 years ago
- A library for interacting with Windows process memory☆7Updated 6 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- ASProtect reverse engineering & analysis WinDbg extension☆22Updated 4 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago