a0rtega / metameLinks
metame is a metamorphic code engine for arbitrary executables
☆586Updated 5 years ago
Alternatives and similar repositories for metame
Users that are interested in metame are comparing it to the libraries listed below
Sorting:
- Demos of various injection techniques found in malware☆791Updated 3 years ago
- A memory scanning evasion technique☆872Updated 8 years ago
- A shellcode writing toolkit☆672Updated 3 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆379Updated 8 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆396Updated 5 years ago
- A tool to detect and crash Cuckoo Sandbox☆294Updated 11 months ago
- ☆814Updated 5 years ago
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆620Updated 2 years ago
- A set of tutorials about code injection for Windows.☆311Updated 9 months ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 7 years ago
- Mirror of users section of rootkit.com☆296Updated 8 years ago
- This is a **WIP** tool that performs shellcode obfuscation in x86 instruction set.☆239Updated 9 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆520Updated 5 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆364Updated 5 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆741Updated 6 years ago
- Search for code cave in all binaries☆282Updated 11 months ago
- InjectProc - Process Injection Techniques [This project is not maintained anymore]☆997Updated 6 years ago
- ☆969Updated 2 months ago
- Cminer is a tool for enumerating the code caves in PE files.☆152Updated 2 years ago
- Kernel rootkit, that lives inside the Windows registry values data☆496Updated 7 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆435Updated 6 years ago
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆452Updated 6 years ago
- A static analyzer for PE executables.☆1,068Updated last year
- Various snippets created during malware analysis☆458Updated 2 years ago
- Portable Executable parsing library (from PE-bear)☆655Updated last month
- A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.☆405Updated 10 years ago
- A Miasm2 based function divination.☆537Updated 5 years ago
- Tool written in python3 to determine where the AV signature is located in a binary/payload☆313Updated 7 years ago
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆421Updated 5 years ago
- ☆399Updated 8 years ago