TalBlum / Anti-Disassembly
A collection of anti disassembly techniques
☆18Updated 7 years ago
Alternatives and similar repositories for Anti-Disassembly:
Users that are interested in Anti-Disassembly are comparing it to the libraries listed below
- Static analysis tools for x86 assembly☆13Updated 8 years ago
- Analysis and Modification Tool for Executables☆16Updated 5 years ago
- hooking KiUserApcDispatcher☆24Updated 7 years ago
- User-mode part of Zerokit platform☆20Updated 5 years ago
- ☆16Updated 5 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 5 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- Zerokit shared code☆16Updated 5 years ago
- An example of PE hollowing injection technique☆23Updated 5 years ago
- Resources from my journey into Windows binary exploitation☆22Updated 6 years ago
- Using Undocumented NTDLL Functions to Read/Write/Delete File☆18Updated 4 years ago
- ☆18Updated 5 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 7 years ago
- My collection of unpackers for malware packers/crypters☆28Updated 7 years ago
- A python metamorphic engine for PE/PE+ files.☆15Updated 2 years ago
- The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…☆19Updated 7 years ago
- ☆33Updated 7 years ago
- Kernel-Mode rootkit that connects to a remote server to send & recv commands☆31Updated 6 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Updated 5 years ago
- PE Infector/Cryptor source code☆15Updated 7 years ago
- Malwarebytes Antivirus CVE☆8Updated 7 years ago
- ☆16Updated 10 years ago
- ASProtect reverse engineering & analysis WinDbg extension☆22Updated 4 years ago
- ☆22Updated 4 years ago
- Debugger checks in 3 ways☆18Updated 7 years ago
- NoREpls - Application designed for the purposes of reverse engineering.☆11Updated 6 years ago