PELock / Simple-Polymorphic-Engine-SPE32Links
Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used to demonstrate what polymorphic engines are.
☆148Updated 2 years ago
Alternatives and similar repositories for Simple-Polymorphic-Engine-SPE32
Users that are interested in Simple-Polymorphic-Engine-SPE32 are comparing it to the libraries listed below
Sorting:
- Set of antianalysis techniques found in malware☆132Updated last year
- Yet another windows internals repo☆207Updated 3 years ago
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆154Updated 2 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆213Updated 3 years ago
- Various Process Injection Techniques☆152Updated 3 years ago
- MalUnpack companion driver☆98Updated last year
- Simple windows API logger☆108Updated 5 years ago
- My notes while studying Windows exploitation☆188Updated 2 years ago
- A simple Windows kernel rootkit.☆92Updated 2 months ago
- Advanced driver monitoring utility.☆215Updated 3 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…☆211Updated 6 months ago
- An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.☆306Updated 6 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆180Updated 3 months ago
- ☆106Updated 6 years ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆124Updated last year
- Simple x86/x64 Assembler/Disassembler/Emulator☆187Updated last year
- Code Injection, Inject malicious payload via pagetables pml4.☆242Updated 4 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆187Updated this week
- Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…☆60Updated last year
- Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)☆104Updated 5 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆226Updated 5 years ago
- APC Internals Research Code☆166Updated 5 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 4 years ago
- Analyze patches in a process☆255Updated 4 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆252Updated 2 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆297Updated 9 months ago
- x86 PE Mutator☆223Updated 2 years ago
- Windows Kernel Programming☆130Updated 5 years ago
- BYOVD: Loading dbk64.sys and grabbing a handle to it☆156Updated 3 years ago