PELock / Simple-Polymorphic-Engine-SPE32Links
Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used to demonstrate what polymorphic engines are.
☆148Updated 2 years ago
Alternatives and similar repositories for Simple-Polymorphic-Engine-SPE32
Users that are interested in Simple-Polymorphic-Engine-SPE32 are comparing it to the libraries listed below
Sorting:
- Set of antianalysis techniques found in malware☆131Updated 2 years ago
- Advanced driver monitoring utility.☆217Updated 3 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆215Updated 3 years ago
- Yet another windows internals repo☆208Updated 4 years ago
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆159Updated 3 years ago
- Various Process Injection Techniques☆158Updated 3 years ago
- My notes while studying Windows exploitation☆190Updated 2 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆183Updated 5 months ago
- MalUnpack companion driver☆97Updated last year
- Simple windows API logger☆109Updated 6 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆304Updated 11 months ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆126Updated 2 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆127Updated 3 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆205Updated 4 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆189Updated 2 months ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆74Updated 4 years ago
- A simple Windows kernel rootkit.☆94Updated 4 months ago
- Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…☆61Updated last year
- This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…☆216Updated 8 months ago
- An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.☆308Updated 6 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆233Updated 5 years ago
- APC Internals Research Code☆168Updated 5 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆242Updated 4 years ago
- Simple Packer PE File☆16Updated 6 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆255Updated 3 years ago
- Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.☆154Updated 3 years ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆98Updated 2 years ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆31Updated 5 years ago
- x86 PE Mutator☆225Updated 2 years ago
- Guided Hacking's official tool to practice bypassing anti-debug techniques.☆284Updated 4 months ago