Sentinel-One / SKREAMLinks
SentinelOne's KeRnel Exploits Advanced Mitigations
☆54Updated 6 years ago
Alternatives and similar repositories for SKREAM
Users that are interested in SKREAM are comparing it to the libraries listed below
Sorting:
- Python bindings for the Microsoft Hypervisor Platform APIs.☆79Updated 6 years ago
- A fast execution trace symbolizer for Windows.☆131Updated last year
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆74Updated last year
- Polymorphic VM and PoliCTF '17 reversing challenge.☆73Updated last year
- Parsers for custom malware formats ("Funky malware formats")☆97Updated 3 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆44Updated last year
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- ☆34Updated 4 years ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- This is a place to share my miscellaneous projects.☆114Updated 5 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 6 years ago
- Static unpacker for FinSpy VM☆102Updated 4 years ago
- ☆66Updated 6 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆76Updated 6 years ago
- Simple library to spray the Windows Kernel Pool☆110Updated 5 years ago
- An Integrity-Check Monitoring Pintool☆58Updated 4 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆124Updated 6 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Updated 2 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆118Updated 7 years ago
- WinDbg workplace settings that I use for debugging☆16Updated 8 years ago
- Hyper-V scripts☆130Updated last month
- Hypervisor-based debugger☆188Updated 4 years ago
- Windows API listing in JSON format - generated from SDK headers + SDK API documentation☆66Updated 5 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 8 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆92Updated 6 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆57Updated 5 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- ☆21Updated 4 months ago