PwCUK-CTO / BinaryNinja_shellcodehashes
Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja
☆11Updated 9 months ago
Alternatives and similar repositories for BinaryNinja_shellcodehashes:
Users that are interested in BinaryNinja_shellcodehashes are comparing it to the libraries listed below
- ☆24Updated 3 years ago
- really ?☆12Updated last year
- ☆24Updated 2 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- ☆20Updated 2 years ago
- ☆12Updated 2 years ago
- Currently proof-of-concept☆16Updated 3 years ago
- ☆11Updated 5 years ago
- An opensource API hooking framework☆22Updated 5 years ago
- Showing how proof-of-work can be used to evade antivirus emulators.☆11Updated 5 months ago
- Non organized Cpp code files I used for my research on Windows☆22Updated 4 years ago
- ☆15Updated last year
- ☆28Updated 5 months ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆17Updated last year
- Finds imports that could be exploited, still requires manual analysis.☆27Updated 2 years ago
- ☆17Updated 5 years ago
- Example for PagedOut!☆24Updated 5 years ago
- Disable PPL via custom driver and dump lsass☆15Updated 4 years ago
- Dangling COM Keys Finder☆17Updated 3 years ago
- Will try to put here slides from now on when I give a talk☆24Updated 3 years ago
- ☆31Updated 4 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 4 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 3 years ago
- PoC exploit for late August 2018 Task Scheduler ALPC Vulnerability☆22Updated 5 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆43Updated 3 years ago
- Some stuff for PHD2021☆14Updated 3 years ago
- RenameLocalVars is an IDA plugin that renames local variables to something easier to read.☆15Updated last year
- kernel-mode DLL Injector☆18Updated this week
- Golang Shlyuz Implant Implementation☆12Updated 2 years ago
- Resources from my journey into Windows binary exploitation☆22Updated 6 years ago