Alternatives and similar repositories for Simple-Polymorphic-Engine-SPE32

Users that are interested in Simple-Polymorphic-Engine-SPE32 are comparing it to the libraries listed below

• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated 2 years ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆97Updated last year
• d35ha / xLogger
  Simple windows API logger
  ☆109Updated 6 years ago
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆219Updated 3 years ago
• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆210Updated 4 years ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆218Updated 3 years ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆237Updated 6 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆160Updated 3 years ago
• CheckPointSW / Anti-Debug-DB
  Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…
  ☆61Updated 2 years ago
• MahmoudZohdy / Process-Injection-Techniques
  Various Process Injection Techniques
  ☆161Updated 3 years ago
• hasherezade / masm_shc
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆184Updated 7 months ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆75Updated 4 years ago
• VergiliusProject / vergilius-project
  This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…
  ☆227Updated last month
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆310Updated last year
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆208Updated 4 years ago
• nelfo / Milfuscator
  x86 PE Mutator
  ☆227Updated 2 years ago
• raminfp / basic-windows-kernel-programming
  Windows Kernel Programming
  ☆132Updated 5 years ago
• PI-Defender / pi-defender
  Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.
  ☆155Updated 3 years ago
• joshfinley / SyscallDumper
  Dump system call codes, names, and offsets from Ntdll.dll
  ☆81Updated 2 years ago
• t3ssellate / unmapper
  An automatic tool for fixing dumped PE files
  ☆42Updated 5 years ago
• repnz / apc-research
  APC Internals Research Code
  ☆168Updated 5 years ago
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆106Updated 2 years ago
• kkent030315 / PageTableInjection
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆242Updated 4 years ago
• season-lab / bluepill
  BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
  ☆128Updated 3 years ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆191Updated 2 years ago
• d35ha / xObf
  Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
  ☆277Updated 3 years ago
• mike1k / solving-vm-crackme-1
  Tutorial on solving a VM based CrackMe.
  ☆66Updated 5 years ago
• nickcano / RelocBonus
  An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.
  ☆311Updated 7 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆96Updated 4 years ago
• amitschendel / venom-rootkit
  A simple Windows kernel rootkit.
  ☆94Updated 6 months ago