batteryshark / stfu_wow64

Related projects ⓘ

Alternatives and complementary repositories for stfu_wow64

• namazso / PEDiffGen
  Subtract one PE file from another!
  ☆19Updated 3 years ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆31Updated 3 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆36Updated 6 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated 5 months ago
• roadwy / Record
  ☆15Updated 10 years ago
• 3gstudent / Add-Dll-Exports
  Use to generate DLL through Visual Studio
  ☆18Updated 7 years ago
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆14Updated last year
• am0nsec / vxlib
  C Header Only Library for Virii
  ☆9Updated 3 years ago
• waleedassar / SyscallNumberFinder
  ☆32Updated 3 years ago
• DissectMalware / WinNativeIO
  Using Undocumented NTDLL Functions to Read/Write/Delete File
  ☆18Updated 3 years ago
• MoePus / SPiCall
  Yet another windows syscall library
  ☆16Updated 4 years ago
• rtyuiow / vmware-backdoor
  vmware-backdoor
  ☆33Updated 3 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆38Updated 2 years ago
• OrShazam / ChainEngine
  automates exploits using ROP chains, using ntdll-scraper
  ☆16Updated 2 years ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• zodiacon / AccessMask
  ☆18Updated 5 years ago
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆30Updated 5 years ago
• 0xcpu / exthost
  A POC for Windows Extension Host hooking
  ☆22Updated 5 years ago
• NUL0x4C / T.D.P.
  Using Thread Description To Hide Shellcodes
  ☆13Updated 2 years ago
• michaeljgoodman / Dumpulator-IDA
  Currently proof-of-concept
  ☆16Updated 2 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆20Updated 4 years ago
• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆16Updated last year
• orca-eaa5a / mac-defender
  ☆12Updated 2 years ago
• OxNinja / C-VM
  My try to implement a virtual CPU in C
  ☆19Updated 11 months ago
• tcpie / hook_any_x64
  Easily hook WIN32 x64 functions
  ☆17Updated this week
• d35ha / DumpPE
  Dump mapped PE files from memory to the disk
  ☆17Updated 5 years ago
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆31Updated 10 months ago