PELock / Simple-Polymorphic-Engine-SPE32
Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used to demonstrate what polymorphic engines are.
☆141Updated last year
Alternatives and similar repositories for Simple-Polymorphic-Engine-SPE32:
Users that are interested in Simple-Polymorphic-Engine-SPE32 are comparing it to the libraries listed below
- Set of antianalysis techniques found in malware☆129Updated last year
- Advanced driver monitoring utility.☆205Updated 2 years ago
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆140Updated 2 years ago
- Yet another windows internals repo☆204Updated 3 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆201Updated 2 years ago
- A library to develop kernel level Windows payloads for post HVCI era☆390Updated 3 years ago
- Various Process Injection Techniques☆148Updated 2 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆170Updated 3 months ago
- ☆105Updated 5 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆122Updated 3 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆195Updated 4 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆202Updated 3 years ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆271Updated 4 months ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated last year
- Kernel Detective☆141Updated 2 years ago
- An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.☆302Updated 6 years ago
- Inject code into a legitimate process☆143Updated 10 years ago
- Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.☆151Updated 2 years ago
- A more stealthy variant of "DLL hollowing"☆337Updated last year
- Browse Page Tables on Windows (Page Table Viewer)☆195Updated 2 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆209Updated 5 years ago
- Analyze patches in a process☆249Updated 3 years ago
- A quick-and-dirty anti-hook library proof of concept.☆103Updated 6 years ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆221Updated 4 years ago
- Research on Windows Kernel Executive Callback Objects☆284Updated 5 years ago
- Asynchronous Procedure Calls☆218Updated 3 years ago
- This is a collection of interesting codes about Windows Process creation.☆232Updated last year
- Anti-debugging techniques on a (bad looking) Win32 application.☆238Updated 11 months ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆118Updated last year
- Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary pr…☆167Updated 2 years ago