buzzer-re / ShinigamiLinks
A dynamic unpacking tool
☆145Updated 2 years ago
Alternatives and similar repositories for Shinigami
Users that are interested in Shinigami are comparing it to the libraries listed below
Sorting:
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆147Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆124Updated last year
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆64Updated last year
- Windows x64 kernel mode rootkit process hollowing POC.☆189Updated 2 years ago
- Recon 2023 slides and code☆80Updated 2 years ago
- x86/x64 Ring 0/-2 System Freezer/Debugger☆120Updated 6 months ago
- A DLL Injection Detector for Windows.☆75Updated last month
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆224Updated 2 years ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆124Updated 10 months ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆127Updated 2 years ago
- ☆114Updated 2 weeks ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆118Updated 2 years ago
- An x64dbg plugin which helps make sense of long C++ symbols☆57Updated 2 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆115Updated 2 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆36Updated 2 years ago
- Exploitable drivers, you know what I mean☆154Updated 3 weeks ago
- A command line Windows API tracing tool for Golang binaries.☆158Updated 2 years ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆106Updated 2 years ago
- Generate a proxy dll for arbitrary dll☆214Updated last year
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆47Updated last year
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆241Updated 2 years ago
- MalUnpack companion driver☆99Updated last year
- Code from process of reversing Sysinternals Suite for educational purposes, with videos to associate them☆48Updated 2 years ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated 5 months ago
- Report and exploit of CVE-2023-36427☆89Updated 2 years ago
- Rewrite and obfuscate code in compiled binaries☆269Updated this week
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆155Updated last year
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆110Updated 10 months ago
- A journal for $6,000 Riot Vanguard bounty.☆66Updated 2 years ago
- HEVD Exploit: ArbitraryWrite on Windows 10 22H2 - Bypassing KVA Shadow and SMEP via PML4 Entry Manipulation☆35Updated last year