Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on Microsoft Windows operating system
☆14Oct 2, 2019Updated 6 years ago
Alternatives and similar repositories for dementia-forensics
Users that are interested in dementia-forensics are comparing it to the libraries listed below
Sorting:
- Simple RAT (only on own network) made in C++☆19Mar 11, 2013Updated 12 years ago
- Demonstrate the new FileDispositionInfoEx behavior☆15Nov 6, 2017Updated 8 years ago
- Windows Server 2K3 NT 5☆12Apr 14, 2021Updated 4 years ago
- post exploitation: dll injection, process hollowing, RunPe, Keyloggers, UacByPass, PayloadEncryption etc..☆14Aug 31, 2017Updated 8 years ago
- Take a list of URIs and print all the of the paths☆10Aug 16, 2020Updated 5 years ago
- ☆14Jul 28, 2018Updated 7 years ago
- Basic disassembly technique to slow down disasm process☆11Sep 20, 2019Updated 6 years ago
- bypass CRC☆12May 3, 2018Updated 7 years ago
- APT34/OILRIG leak☆11Jun 25, 2019Updated 6 years ago
- x64HOOK库☆18Jan 14, 2020Updated 6 years ago
- Dump mapped PE files from memory to the disk☆20Jun 28, 2019Updated 6 years ago
- Easily hook WIN32 x64 functions☆18Feb 19, 2025Updated last year
- New handle stealing technique for windows apps☆14Oct 6, 2017Updated 8 years ago
- Learning Various Process Injection Techniques☆17Apr 4, 2019Updated 6 years ago
- Botnet SDK Based on Zeus HTTP Malware (Educational Purposes)☆17Sep 7, 2019Updated 6 years ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- a "process-less" trojan☆12May 9, 2020Updated 5 years ago
- WORK IN PROGRESS. RAT written in C++ using Win32 API☆19Sep 12, 2019Updated 6 years ago
- ☆16Mar 1, 2019Updated 7 years ago
- Simple remote administration tool. Written in c++ and MASM.☆18May 16, 2018Updated 7 years ago
- fork HoShiMin Avanguard☆20Sep 29, 2018Updated 7 years ago
- Simple PE packer with RtlCompressBuffer☆21Sep 20, 2015Updated 10 years ago
- Simple Demo of using Windows Hypervisor Platform☆29Jul 14, 2025Updated 7 months ago
- DarkRat source - beware untested source and resources.☆21Dec 7, 2019Updated 6 years ago
- 以前改进的cheat内核通信模块,现在EAC Detected,现在发出来☆55Jul 24, 2021Updated 4 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆28Mar 30, 2019Updated 6 years ago
- Anti Cheat i made in my free time. Credits to everyone who helped are in the files and some are in the code. I will definitely improve th…☆58Aug 5, 2018Updated 7 years ago
- Open Course for diving security internal☆52Nov 11, 2019Updated 6 years ago
- Simple header only library to change return address on current stack frame.☆22Sep 4, 2016Updated 9 years ago
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆48Nov 9, 2014Updated 11 years ago
- DarkRats Standalone HVNC☆25May 20, 2022Updated 3 years ago
- Allows you to parse all messages sent to DbgPrint without any process interaction.☆32Apr 8, 2020Updated 5 years ago
- ☆25Mar 3, 2019Updated 7 years ago
- NT reversal☆25Jul 12, 2018Updated 7 years ago
- Test suite for bypassing Malware sandboxes.☆38Oct 20, 2014Updated 11 years ago
- ☆28Nov 20, 2017Updated 8 years ago
- External Hack for Aura Kingdom TO☆14Feb 17, 2023Updated 3 years ago
- A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory☆33Feb 14, 2014Updated 12 years ago
- unicorn emulator for x64dbg☆34Feb 21, 2018Updated 8 years ago