XShar / simple_mutate_pe_x86Links
Мутация PE x86
☆15Updated 6 years ago
Alternatives and similar repositories for simple_mutate_pe_x86
Users that are interested in simple_mutate_pe_x86 are comparing it to the libraries listed below
Sorting:
- Скрытие строки от отладчиков и декомпиляторов☆50Updated 5 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆36Updated 6 years ago
- Скрытие Win API☆26Updated 5 years ago
- Polymorphic Stub Creator☆34Updated 8 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆42Updated 3 years ago
- win32/x64 obfuscate framework☆32Updated 6 years ago
- using gpuz to load driver☆34Updated 6 years ago
- Detect VM and Hypervisor☆8Updated 4 years ago
- PAGE_GUARD based hooking library☆46Updated 2 years ago
- With this RunPE you can easily inject your payload in any x86 or x64 program.☆14Updated 6 years ago
- Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.☆26Updated 5 years ago
- Protected Process Light Library☆18Updated 5 years ago
- LSASS INJECTOR☆35Updated 6 years ago
- vmware-backdoor☆33Updated 3 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆50Updated 4 years ago
- A poc that abuses Enclave☆38Updated 2 years ago
- NT reversal☆25Updated 6 years ago
- Using SetWindowHookEx for preinjected DLL's☆58Updated 2 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- Injector with kernel power☆16Updated 4 years ago
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆19Updated 3 years ago
- ☆26Updated 7 years ago
- R3劫持所有异常☆15Updated 4 years ago
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆41Updated 6 years ago
- ☆17Updated 4 years ago
- Communicate from ring-0 to ring-3 using NamedPipes.☆10Updated 2 years ago
- A library with four different methods to execute shellcode in a process☆27Updated 5 years ago
- MazzCrypt - You won't ever get caught. A [was-private] polymorphic source code parser to randomize executables. Inspired by PolyLoader by…☆12Updated 8 years ago
- x64 manual mapper using inline syscalls☆9Updated 3 years ago