aaaddress1 / theArk
Windows x86 PE Packer In C++
☆52Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for theArk
- ☆26Updated this week
- simple compiler based on mingw to build uncrackable windows application against analysis tools☆63Updated 6 years ago
- tool for building windows shellcode in C by MinGW☆50Updated 3 years ago
- Run some secret code invisible from debugger single step.(x86 process on x64 windows only)☆24Updated 4 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆102Updated 3 years ago
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆160Updated 3 years ago
- ☆43Updated 2 years ago
- PoC for DEF CON 26: Playing Malware Injection with Exploit thoughts☆23Updated 6 years ago
- ☆44Updated last year
- Hacker Disassembler Engine 64 Copyright (c) 2008-2009, Vyacheslav Patkov. * All rights reserved.☆44Updated 2 years ago
- POC about how to prevent windbg break☆14Updated 2 years ago
- ☆29Updated last year
- 2021 iThome 鐵人賽☆46Updated 10 months ago
- Windows API Hashes used in the malwares☆40Updated 9 years ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆53Updated 3 years ago
- VMPilot: A Modern C++ Virtual Machine SDK☆220Updated 6 months ago
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆163Updated 10 months ago
- Windows Injection 101: from Zero to ROP (HITCON 2017)☆27Updated 7 years ago
- Resolve DOS MZ executable symbols at runtime☆93Updated 3 years ago
- Windows PE Signature Thief in C++☆50Updated 4 years ago
- APC Internals Research Code☆158Updated 4 years ago
- a tool used to analyze and monitor in named pipes☆148Updated 3 weeks ago
- The Purified Windows 11: without Defender, Updater, Patches, System Health, etc.☆46Updated last year
- MediaTek Fuzzing Workshop in HITCON 2021☆62Updated 2 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆94Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆206Updated 5 years ago
- APC DLL Injector with NtQueueApcThread and wake up thread support☆44Updated 7 years ago
- A simple Windows kernel rootkit.☆88Updated last year
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆85Updated 2 years ago