PELock / CrackMeZ3S-CTF-CrackMe-Tutorial
How to write a CrackMe for a CTF competition. Source code, technical explanation, anti-debugging and anti reverse-engineering tricks.
☆45Updated last year
Related projects: ⓘ
- Scripts I made to aid me in everyday reversing or just for fun...☆35Updated 5 years ago
- My collection of unpackers for malware packers/crypters☆28Updated 7 years ago
- ☆29Updated this week
- Plugin to patch and remove ASLR from PE files on x64dbg☆36Updated last year
- With xshellex you can paste any kind of c-shellcode strings in x64dbg, ollydbg & immunity debugger☆37Updated last year
- My personal cheat sheet for the x64dbg python plugin.☆25Updated 4 years ago
- A ready-made template for a project based on libpeconv.☆40Updated last year
- A repository of example plugins for Relyze Desktop.☆32Updated 4 years ago
- A collection of anti disassembly techniques☆18Updated 7 years ago
- APIInfo Plugin (x86) - A Plugin For x64dbg☆48Updated 6 years ago
- Windows API Hashes used in the malwares☆38Updated 9 years ago
- Exploits I've authored☆59Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆103Updated 4 years ago
- ☆22Updated 4 years ago
- A simple API monitor for Windbg☆62Updated 7 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆25Updated 6 years ago
- ☆21Updated 3 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- A set of small utilities, helpers for PIN tracers☆31Updated 11 months ago
- APISearch Plugin (x86) - A Plugin For x64dbg☆50Updated 6 years ago
- PoC for detecting and dumping process hollowing code injection☆50Updated 5 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆62Updated 2 years ago
- genpatch is IDA plugin that generates a python script for patching binary☆30Updated 8 months ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆39Updated last week
- ☆48Updated 4 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆49Updated 6 months ago
- Neutralize KEPServerEX anti-debugging techniques☆30Updated last year
- x64dbg scripts for finding OEP of packers☆14Updated 5 years ago
- Write-ups for FireEye's FLARE-On challenges☆25Updated 5 years ago