ayoubfaouzi / awesome-virtualizationLinks
☆17Updated 6 years ago
Alternatives and similar repositories for awesome-virtualization
Users that are interested in awesome-virtualization are comparing it to the libraries listed below
Sorting:
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- ☆20Updated 5 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆35Updated 3 years ago
- ☆22Updated 4 years ago
- An opensource API hooking framework☆22Updated 5 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- Debugger checks in 3 ways☆20Updated 7 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- x86 and x86-64 shellcodes for Windows, Mac OSX, Linux, BSD and Solaris☆15Updated 7 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆26Updated 6 years ago
- Headers for linking your software with ntdll.dll☆15Updated 4 years ago
- ☆33Updated 3 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- Parser for a custom executable format from Hidden Bee malware (first stage)☆43Updated 9 months ago
- A ready-made template for a project based on libpeconv.☆48Updated 4 months ago
- An example of PE hollowing injection technique☆23Updated 6 years ago
- PoC for detecting and dumping process hollowing code injection☆51Updated 6 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- Learning Various Process Injection Techniques☆21Updated 6 years ago
- NoREpls - Application designed for the purposes of reverse engineering.☆11Updated 6 years ago
- Miscellaneous old Exploit code and PoCs☆16Updated 8 months ago
- A small utility to run raw code chunks in the executable memory area.☆14Updated 10 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆16Updated 5 years ago
- A minimal tool to extract shellcode from 64-bit PE binaries.☆50Updated 3 years ago
- A small library helping to parse commandline parameters (for C/C++)☆57Updated last month
- Kernel mode windows NT API logger☆22Updated 5 years ago
- Decrypt Wireless Passwords On Windows☆14Updated 5 years ago
- ASProtect reverse engineering & analysis WinDbg extension☆22Updated 4 years ago
- ☆11Updated 4 years ago
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆20Updated last year