Truneski / WindowsKernelProgramming-ExercisesLinks
☆49Updated 5 years ago
Alternatives and similar repositories for WindowsKernelProgramming-Exercises
Users that are interested in WindowsKernelProgramming-Exercises are comparing it to the libraries listed below
Sorting:
- Process reimaging proof of concept code☆96Updated 6 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- Sysmon shenanigans☆66Updated 4 years ago
- Blog posts☆30Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- The Minimalistic x86/x64 API Hooking Library for Windows☆32Updated 7 years ago
- ☆31Updated 5 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Updated 5 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 3 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆50Updated 4 years ago
- ☆45Updated 7 years ago
- ☆36Updated 6 years ago
- Simple 32/64-bit PEs loader.☆139Updated 6 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- exploit termdd.sys(support kb4499175)☆59Updated 6 years ago
- ☆22Updated 5 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆93Updated 6 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Windows Drivers☆99Updated 6 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 4 years ago
- ☆26Updated 7 years ago
- ☆21Updated 5 years ago
- a program to detect reflective dll injection on a live machine☆74Updated 9 years ago