PaulNorman01 / Dynamizer
Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.
☆18Updated 2 years ago
Alternatives and similar repositories for Dynamizer:
Users that are interested in Dynamizer are comparing it to the libraries listed below
- An attempt at reversing WindowsDefender☆20Updated 3 months ago
- Process Hollowing demonstration & explanation☆34Updated 3 years ago
- Tiny driver patch to allow kernel callbacks to work on Win10 21h1☆34Updated 2 years ago
- 💻 Windows 10 Kernel-mode rootkit☆31Updated 2 years ago
- Phantom DLL Hollowing method implemented in modmap☆17Updated 3 years ago
- ☆22Updated last year
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆26Updated last year
- Bypass UAC by abusing shell protocol handlers☆14Updated 3 years ago
- A simple PE loader.☆25Updated 2 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆23Updated last year
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆39Updated 3 years ago
- Small handy tool for crafting shellcodes by hand.☆18Updated 2 years ago
- ☆15Updated 4 years ago
- Bypass UAC at any level by abusing the Task Scheduler and environment variables☆30Updated 3 years ago
- Collection of shellcode injection and execution techniques☆16Updated 3 years ago
- Process Injection: APC Injection☆29Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆30Updated 2 years ago
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆61Updated last year
- A compact tool for detecting AV/EDR hooks in default Windows libraries.☆30Updated 2 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆16Updated 3 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆42Updated 3 years ago
- Hides processes from the windows task manager using IAT hooking.☆19Updated 3 years ago
- improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys☆49Updated last year
- ☆37Updated last year
- ☆49Updated 2 years ago
- x64 Windows privilege elevation using anycall☆21Updated 3 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆22Updated 4 years ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆17Updated 8 months ago
- A proof of concept of real custom GetProcAddress and GetModuleBaseAddress☆19Updated 2 years ago