PhrozenIO / DLest
Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
☆220Updated 10 months ago
Alternatives and similar repositories for DLest:
Users that are interested in DLest are comparing it to the libraries listed below
- User-friendly Microsoft Windows Debugger for Malware Analysts.☆198Updated 2 years ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆160Updated last month
- Patching "signtool.exe" to accept expired certificates for code-signing.☆275Updated 9 months ago
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆349Updated 3 months ago
- Advanced static analysis tool☆88Updated 2 months ago
- Python tool to check rootkits in Windows kernel☆195Updated 2 months ago
- A ProcessMonitor visualization application written in rust.☆178Updated last year
- A POC to disable TamperProtection and other Defender / MDE components☆212Updated 11 months ago
- Important notes and topics on my journey towards mastering Windows Internals☆376Updated last year
- Signtool for expired certificates☆477Updated last year
- Repository of Yara Rules☆110Updated last month
- An automatic unpacker and logger for DotNet Framework targeting files☆252Updated last year
- Analyse your malware to surgically obfuscate it☆465Updated 2 months ago
- DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.☆491Updated 2 years ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆209Updated 2 years ago
- PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate …☆261Updated 6 months ago
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆301Updated last year
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆122Updated 9 months ago
- ☆114Updated last week
- Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.☆124Updated 3 years ago
- ☆221Updated 3 months ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆473Updated last year
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- A collection of tools, scripts and personal research☆128Updated last month
- ☆201Updated 6 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆143Updated 9 months ago
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆294Updated 2 years ago
- A C# based tool for analysing malicious OneNote documents☆113Updated 2 years ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 9 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆675Updated last month