Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja
☆11Jul 24, 2024Updated last year
Alternatives and similar repositories for BinaryNinja_shellcodehashes
Users that are interested in BinaryNinja_shellcodehashes are comparing it to the libraries listed below
Sorting:
- ☆16Sep 5, 2024Updated last year
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆37Jul 27, 2021Updated 4 years ago
- ☆38Feb 26, 2025Updated last year
- Process Hollowing in Rust with Process Executable Relocation Support for both 32 and 64 bit architecture environments.☆22Jan 6, 2025Updated last year
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆16Sep 4, 2020Updated 5 years ago
- ☆22Jan 15, 2025Updated last year
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Aug 11, 2023Updated 2 years ago
- Go fastcall analysis for ida decompiler☆46Jun 25, 2025Updated 8 months ago
- Here is a collage of reverse engineering topics that I find interesting☆16Dec 10, 2017Updated 8 years ago
- Async rust support for the reverse-engineered Crowdstrike Falcon protocol between the Sensor and cloud services☆17Mar 10, 2023Updated 2 years ago
- BypassCredGuard CS BOF☆49Jan 23, 2025Updated last year
- ☆18Feb 25, 2024Updated 2 years ago
- ☆18Feb 14, 2019Updated 7 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆21Dec 3, 2020Updated 5 years ago
- ☆18Jan 14, 2026Updated last month
- IDA Pro plugin to aid with the analysis of native IIS modules☆21Aug 1, 2024Updated last year
- ☆53Mar 26, 2025Updated 11 months ago
- Threat Mitigation Strategies☆28Feb 18, 2026Updated last week
- Source files for my posts☆17Jun 20, 2023Updated 2 years ago
- ☆27Jan 17, 2026Updated last month
- Assembly-Export for IDA 9.0 Pro. Assemport exports all functions separately in an assembly file. This enables further processing by exter…☆30May 30, 2025Updated 9 months ago
- Mythic C2 wrapper for NimSyscallPacker☆25Mar 12, 2025Updated 11 months ago
- Curated list of well-developed C# Offensive Tools☆20Jan 30, 2020Updated 6 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Dec 6, 2018Updated 7 years ago
- Use GZip to compress your .NET assemblies for loading with AssemblyResolve.☆20Apr 11, 2014Updated 11 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆163Aug 23, 2024Updated last year
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆59Dec 15, 2023Updated 2 years ago
- ☆33Jan 23, 2025Updated last year
- Windows shellcode encoding and encrypting tool☆20May 4, 2022Updated 3 years ago
- leaking net-ntlm with webdav☆26Feb 23, 2021Updated 5 years ago
- Walking the PEB in VBA☆24Apr 6, 2020Updated 5 years ago
- Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.☆31Jun 5, 2024Updated last year
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆23Nov 22, 2021Updated 4 years ago
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated last year
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆28Feb 15, 2022Updated 4 years ago
- Shellcode Loader Utilizing ETW Events☆67Feb 26, 2025Updated last year
- ☆31Jul 26, 2024Updated last year
- ☆29May 10, 2024Updated last year