bootkitsbook / bootkitsLinks
☆66Updated 6 years ago
Alternatives and similar repositories for bootkits
Users that are interested in bootkits are comparing it to the libraries listed below
Sorting:
- ☆106Updated 6 years ago
- ☆34Updated 4 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆54Updated 6 years ago
- ☆20Updated last month
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- Flare-On solutions☆36Updated 5 years ago
- Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.☆81Updated 4 years ago
- ☆71Updated last year
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆51Updated 6 years ago
- ☆28Updated 5 years ago
- In line function hooking LKM rootkit☆51Updated 5 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆44Updated last year
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆65Updated 3 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆43Updated 6 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆74Updated 6 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆35Updated 4 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated 11 months ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 7 years ago
- Radare2 Metadata Extraction to Elasticsearch☆23Updated last year
- Ghidra plugin for https://analyze.intezer.com☆71Updated 2 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- ☆13Updated 6 years ago