codereversing / runfromreg
Run executables from the Windows registry
☆16Updated 2 years ago
Alternatives and similar repositories for runfromreg:
Users that are interested in runfromreg are comparing it to the libraries listed below
- PE Infector/Cryptor source code☆19Updated 2 years ago
- Winsock inspection/filtering/modifying☆19Updated 2 years ago
- Run one process as another under Windows☆11Updated 2 years ago
- Diffing process heaps☆15Updated 2 years ago
- ☆51Updated 8 years ago
- Enumerate process modules manually☆9Updated 2 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆34Updated 8 years ago
- kernel exploitation helper class☆76Updated 8 years ago
- Bypassing User Account Control (UAC) using TpmInit.exe☆42Updated 8 years ago
- Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.☆53Updated 8 years ago
- Hooking vtables☆10Updated 2 years ago
- ☆92Updated 10 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆50Updated 6 years ago
- Windows kernel vulnerability in win32k.sys Driver☆34Updated 9 years ago
- Elevation by environment variable expansion☆65Updated 8 years ago
- Anti-AV compilation☆42Updated 11 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- An implementation of a generic unpacker based on Intel PIN☆29Updated 8 years ago
- Exploit Win10Pcap Driver to enable some Privilege in our process token ( local Privilege escalation )☆60Updated 9 years ago
- Simple standalone bundle of NT core APIs☆26Updated 9 years ago
- Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )☆28Updated 9 years ago
- A library for intercepting native functions by hooking KiFastSystemCall☆72Updated 4 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- A static Internet Explorer Fuzzer.☆50Updated 7 years ago
- Some source code snippets In my development.☆27Updated 3 years ago
- pykd script to dynamically find vtables on heap (windows x86/x64)☆25Updated 10 years ago
- ☆80Updated 7 years ago
- Ring3 Rootkit Backdoor.☆41Updated 9 years ago
- modify binary Portable Executable to hook its export functions☆62Updated 6 years ago
- Collection Of Anti-Debugging Tricks☆99Updated 9 years ago