PhrozenIO / DLest
Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
☆177Updated 3 months ago
Related projects: ⓘ
- User-friendly Microsoft Windows Debugger for Malware Analysts.☆189Updated last year
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆271Updated last year
- Repository to publish your evasion techniques and contribute to the project☆128Updated 2 weeks ago
- A ProcessMonitor visualization application written in rust.☆175Updated last year
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆115Updated 2 months ago
- A C# based tool for analysing malicious OneNote documents☆108Updated last year
- Patching "signtool.exe" to accept expired certificates for code-signing.☆264Updated 2 months ago
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆269Updated 6 months ago
- Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.☆109Updated 2 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆248Updated last year
- A list of useful tools for Malware Analysis (will be updated regularly)☆122Updated 2 weeks ago
- A collection of tools, scripts and personal research☆104Updated 2 months ago
- ☆103Updated last month
- Advanced static analysis tool☆70Updated 2 weeks ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated last year
- Repository of Yara Rules☆83Updated last week
- ☆154Updated last month
- Cybersecurity research results. Simple C/C++ and Python implementations☆162Updated last week
- Analyse your malware to surgically obfuscate it☆373Updated 11 months ago
- Windows.EDB Browser☆53Updated last year
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆114Updated last year
- ☆145Updated last year
- ☆93Updated 2 weeks ago
- ☆168Updated 8 months ago
- ☆88Updated 2 years ago
- A small tool that allows to run WinAPI functions through command line parameters☆176Updated last year
- Signtool for expired certificates☆441Updated last year
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆131Updated 8 months ago
- Important notes and topics on my journey towards mastering Windows Internals☆330Updated 4 months ago
- Recon 2023 slides and code☆77Updated last year