Wker666 / exe-analyzer
一款64位Exe程序动态追踪执行流程以及保存信息的工具
☆25Updated last week
Related projects ⓘ
Alternatives and complementary repositories for exe-analyzer
- ☆15Updated 2 years ago
- InfinityHook 支持Win7 到 Win11 最新版本,虚拟机环境及物理机环境☆33Updated last month
- 尽量汇聚反调试资源和利用对抗技术☆174Updated 5 months ago
- Obfuscator-LLVM for LLVM 16.x branch☆185Updated last year
- 大数字驱动逆向代码☆65Updated last year
- IDA Pro plugin AntiXorstr☆103Updated last year
- 整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆113Updated last year
- ☆183Updated last year
- ☆77Updated 3 years ago
- shellcode 生成框架☆239Updated 2 years ago
- 一个用来做windows内核hook的框架☆81Updated 6 months ago
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆29Updated last year
- 《Windows 内核安全编程技术实践》 系列丛书,探索 Anti RootKit 反内核工具核心原理与技术实现细节。☆28Updated 2 years ago
- 在科锐学习逆向工程和游戏外挂开发的笔记,大概内容为8086汇编,win32汇编,调试器原理,pe文件格式,32位64位反汇编,壳的原理,shellcode,x86/x64内核,游戏逆向找数据,调用游戏lua☆122Updated last week
- ☆80Updated last month
- ☆26Updated 10 months ago
- Radical Windows ARK☆206Updated last week
- 从MmPfnData中枚举进程和页目录基址☆133Updated last year
- an ida plugin used to decompile vmp☆300Updated 4 months ago
- ☆49Updated last month
- etw hook (syscall/infinity hook) compatible with the latest Windows version of PG☆211Updated 6 months ago
- Forked LLVM focused on MSVC Compatibility. This version is designed for windows users☆75Updated 3 weeks ago
- ☆29Updated last month
- a monitoring windows driver calls kernel api tools☆92Updated 4 months ago
- Example of reading process memory through kernel special APC☆96Updated last year
- an encryption library designed for Windows kernel and driver programming☆114Updated last year
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆110Updated 7 months ago
- ☆170Updated last year