bootkitsbook / bootkits
☆62Updated 5 years ago
Alternatives and similar repositories for bootkits:
Users that are interested in bootkits are comparing it to the libraries listed below
- ☆104Updated 5 years ago
- ☆33Updated 4 years ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆53Updated 6 years ago
- POC viruses I have created to demo some ideas☆59Updated 4 years ago
- Parsers for custom malware formats ("Funky malware formats")☆95Updated 3 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆89Updated 5 years ago
- ☆69Updated last year
- Flare-On solutions☆36Updated 5 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- ☆19Updated last week
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆40Updated 5 years ago
- Python bindings for the Microsoft Hypervisor Platform APIs.☆80Updated 5 years ago
- Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.☆79Updated 4 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆120Updated 4 years ago
- ☆33Updated 3 years ago
- Driver Initial Reconnaissance Tool☆122Updated 5 years ago
- Hyper-V Research is trendy now☆178Updated 10 months ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 4 years ago
- ☆108Updated 4 years ago
- A simple API monitor for Windbg☆63Updated 7 years ago
- Windows Drivers☆97Updated 5 years ago
- Go Lang Portable Executable Parser☆39Updated 3 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆121Updated 6 years ago
- Polymorphic VM and PoliCTF '17 reversing challenge.☆73Updated 6 months ago
- Elevation of privilege detector based on HyperPlatform☆120Updated 8 years ago
- ☆13Updated 5 years ago
- Repository for officially supported Binary Ninja plugins☆49Updated last week
- Import DynamoRIO drcov code coverage data into Ghidra☆43Updated last year
- In line function hooking LKM rootkit☆51Updated 5 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 5 years ago