atxsinn3r / amsiscannerView external linksLinks
A C/C++ implementation of Microsoft's Antimalware Scan Interface
☆181Mar 30, 2018Updated 7 years ago
Alternatives and similar repositories for amsiscanner
Users that are interested in amsiscanner are comparing it to the libraries listed below
Sorting:
- ☆12Feb 19, 2017Updated 8 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- kernel space code☆12Jun 8, 2019Updated 6 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆27May 21, 2014Updated 11 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆34Oct 6, 2017Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- Final Transparent encrypted version☆14Jan 10, 2017Updated 9 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- Class implementation of PowerLoader injection technique☆32Dec 23, 2016Updated 9 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- WoW64 -> x64☆18Oct 1, 2016Updated 9 years ago
- ☆14Aug 15, 2018Updated 7 years ago
- API logger plugin for Intel Pintool☆14Nov 19, 2017Updated 8 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Oct 3, 2018Updated 7 years ago
- IDA反-反调试插件 IDAStealth v1.3.3, created 06/28/2011, Jan Newger☆21Apr 4, 2018Updated 7 years ago
- Wow64 syscall hook☆42May 28, 2017Updated 8 years ago
- A debbuger based dbgeng for WIndows☆34Aug 23, 2017Updated 8 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Aug 3, 2018Updated 7 years ago
- Pafish4vs is based on [Pafish]( https://github.com/a0rtega/pafish) , just ported to the VS (VC) compiler (X64 , X86) .☆12Aug 19, 2016Updated 9 years ago
- PE/PE +(64bit) Viewer (Qt 5.8)☆10Aug 3, 2018Updated 7 years ago
- 基于WinDivert实现的一个包过滤与截断程序☆13Jul 22, 2018Updated 7 years ago
- Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format☆13Jun 3, 2014Updated 11 years ago
- An analytical debugger programmed in C++, using Qt.☆22May 20, 2012Updated 13 years ago
- Decompile an x86 exe, and read PE infos.☆19Sep 29, 2018Updated 7 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- This is a pintool that can analyze target dynamically and output code blocks and "key frames".☆14Mar 26, 2015Updated 10 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- Universal Unhooking☆326Sep 19, 2018Updated 7 years ago
- Elevation of privilege detector based on HyperPlatform☆124Mar 5, 2017Updated 8 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- windows kernel File redirection☆20Sep 21, 2014Updated 11 years ago
- PE32 binary + W32 payload☆11Jul 23, 2017Updated 8 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36May 4, 2016Updated 9 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Mar 15, 2015Updated 10 years ago
- wow64 syscall filter☆13Nov 12, 2014Updated 11 years ago