Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on Microsoft Windows operating system
☆14Oct 2, 2019Updated 6 years ago
Alternatives and similar repositories for dementia-forensics
Users that are interested in dementia-forensics are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- New handle stealing technique for windows apps☆14Oct 6, 2017Updated 8 years ago
- Simple RAT (only on own network) made in C++☆19Mar 11, 2013Updated 13 years ago
- post exploitation: dll injection, process hollowing, RunPe, Keyloggers, UacByPass, PayloadEncryption etc..☆14Aug 31, 2017Updated 8 years ago
- Demonstrate the new FileDispositionInfoEx behavior☆15Nov 6, 2017Updated 8 years ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- APT34/OILRIG leak☆11Jun 25, 2019Updated 6 years ago
- This is a random process injector, and more injection techniques will be added in the future.☆13Jul 17, 2020Updated 5 years ago
- Basic disassembly technique to slow down disasm process☆11Sep 20, 2019Updated 6 years ago
- Windows Server 2K3 NT 5☆12Apr 14, 2021Updated 5 years ago
- Dump mapped PE files from memory to the disk☆20Jun 28, 2019Updated 6 years ago
- WORK IN PROGRESS. RAT written in C++ using Win32 API☆20Sep 12, 2019Updated 6 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Simple remote administration tool. Written in c++ and MASM.☆18May 16, 2018Updated 7 years ago
- Take a list of URIs and print all the of the paths☆10Aug 16, 2020Updated 5 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- RedAudit is a next-generation Windows forensic and security assessment framework featuring a live cyber-operations GUI built for real inv…☆35Nov 15, 2025Updated 5 months ago
- Repository to track community hardware, data and funding.☆12Apr 8, 2022Updated 4 years ago
- NTAPI hook bypass with (semi) legit stack trace☆19May 9, 2023Updated 2 years ago
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- Easily hook WIN32 x64 functions☆18Feb 19, 2025Updated last year
- ☆14Jul 28, 2018Updated 7 years ago
- Simple PE packer with RtlCompressBuffer☆21Sep 20, 2015Updated 10 years ago
- This tool is meant to parse an NTFS $MFT file.☆15Mar 26, 2024Updated 2 years ago
- DarkRat source - beware untested source and resources.☆22Dec 7, 2019Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- GPT fdisk partitioning tool for use under UEFI environments.☆17Nov 27, 2024Updated last year
- Botnet SDK Based on Zeus HTTP Malware (Educational Purposes)☆18Sep 7, 2019Updated 6 years ago
- obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.☆47Apr 30, 2019Updated 6 years ago
- NT reversal☆25Jul 12, 2018Updated 7 years ago
- macos-collector - Automated Collection of macOS Forensic Artifacts for DFIR☆41Updated this week
- UEFI セキュアブートのサンプル UEFI アプリケーションです。☆11Nov 6, 2016Updated 9 years ago
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆47Nov 9, 2014Updated 11 years ago
- External Hack for Aura Kingdom TO☆14Feb 17, 2023Updated 3 years ago
- x64HOOK库☆18Jan 14, 2020Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd☆14Jul 9, 2020Updated 5 years ago
- bypass CRC☆13May 3, 2018Updated 7 years ago
- A Tool for Impersonating CAPTCHA Providers☆16Aug 3, 2012Updated 13 years ago
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆19Jun 10, 2025Updated 10 months ago
- Extract files from ADB devices on Windows, Linux and MacOS. Mostly a wrapper for adbutils.☆48Updated this week
- A minimal tool to extract shellcode from 64-bit PE binaries.☆53Sep 13, 2021Updated 4 years ago
- DarkRats Standalone HVNC☆26May 20, 2022Updated 3 years ago