PhrozenIO / DLest
Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
☆218Updated 10 months ago
Alternatives and similar repositories for DLest:
Users that are interested in DLest are comparing it to the libraries listed below
- User-friendly Microsoft Windows Debugger for Malware Analysts.☆198Updated 2 years ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆158Updated 2 weeks ago
- Patching "signtool.exe" to accept expired certificates for code-signing.☆275Updated 9 months ago
- A ProcessMonitor visualization application written in rust.☆178Updated last year
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆346Updated 2 months ago
- An automatic unpacker and logger for DotNet Framework targeting files☆252Updated last year
- PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate …☆261Updated 6 months ago
- Python tool to check rootkits in Windows kernel☆195Updated last month
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆208Updated last year
- Advanced static analysis tool☆88Updated 2 months ago
- ☆217Updated 2 months ago
- Generate a proxy dll for arbitrary dll☆169Updated 6 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆142Updated 9 months ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆175Updated this week
- A dynamic unpacking tool☆134Updated last year
- A POC to disable TamperProtection and other Defender / MDE components☆208Updated 10 months ago
- A collection of tools, scripts and personal research☆127Updated last week
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆470Updated last year
- Analyse your malware to surgically obfuscate it☆463Updated last month
- Important notes and topics on my journey towards mastering Windows Internals☆375Updated 11 months ago
- AutoIt Extractor transferred to GitHub☆44Updated 2 years ago
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆301Updated last year
- Spartacus DLL/COM Hijacking Toolkit☆219Updated 11 months ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆335Updated 2 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆669Updated last month
- Tools and PoCs for Windows syscall investigation.☆359Updated 3 months ago
- ☆201Updated 5 months ago
- Unorthodox and stealthy way to inject a DLL into the explorer using icons☆314Updated 2 months ago
- Graphical interface for PortEx, a Portable Executable and Malware Analysis Library☆136Updated 9 months ago
- ☆98Updated 4 months ago