Towards Generic Deobfuscation of Windows API Calls
☆50May 21, 2019Updated 6 years ago
Alternatives and similar repositories for winapi-deobfuscation
Users that are interested in winapi-deobfuscation are comparing it to the libraries listed below
Sorting:
- This is a fuzzer for Windows SEH buffer overflow.☆15Oct 17, 2017Updated 8 years ago
- ☆13Jul 11, 2017Updated 8 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- CVE-2014-1303 (WebKit Heap based BOF) proof of concept for Linux☆24Aug 10, 2025Updated 7 months ago
- Sample Program for rust-uefi. It's running as a UEFI apps written by Rust.☆16Sep 14, 2019Updated 6 years ago
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆57Jan 16, 2020Updated 6 years ago
- ☆10Apr 8, 2018Updated 7 years ago
- ☆12Feb 19, 2017Updated 9 years ago
- DNS反弹shell客户端☆13Jul 24, 2016Updated 9 years ago
- Dynamic binary analysis via platform emulation☆12Aug 10, 2018Updated 7 years ago
- My take on the capcom driver vulnerability☆28Aug 7, 2017Updated 8 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Code for my blog post on combining S2E and Kaitai Struct☆15Jun 1, 2019Updated 6 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- Agent installed on node to launch IDA,Bindiff,... and send results to the server ( AutoDiffWeb )☆10Mar 25, 2016Updated 9 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- API logger plugin for Intel Pintool☆14Nov 19, 2017Updated 8 years ago
- Get a list of installed software in a safe manner☆11Aug 7, 2017Updated 8 years ago
- The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…☆20Sep 18, 2017Updated 8 years ago
- fun rootkits stuff!☆20Jul 28, 2015Updated 10 years ago
- Windows API tracer for malware (oldname: unitracer)☆120Oct 16, 2017Updated 8 years ago
- Small tool which loads Windows drivers with NtLoadDriver☆47Apr 28, 2021Updated 4 years ago
- Code for the paper EvilCoder: Automated Bug Insertion at ACSAC 2016☆46Jan 18, 2017Updated 9 years ago
- ☆10Jan 3, 2023Updated 3 years ago
- simple PE packer written in C++☆56Feb 23, 2018Updated 8 years ago
- Hidden monitoring and blocking Android apps☆10May 2, 2017Updated 8 years ago
- a method for undetectable breakpoints in 32-bit Windows programs☆13May 15, 2014Updated 11 years ago
- ☆14Jun 24, 2017Updated 8 years ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆14Sep 22, 2018Updated 7 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- Makes drivers less sucky to manage from usermode.☆11Aug 5, 2016Updated 9 years ago
- x64 Driver written in FASM☆24May 18, 2017Updated 8 years ago
- 🐧 A simple kernel-level rootkit☆21Mar 1, 2016Updated 10 years ago
- ☆16Nov 10, 2015Updated 10 years ago
- ☆13Jul 31, 2016Updated 9 years ago
- ☆10Sep 29, 2019Updated 6 years ago
- ☆32Sep 14, 2017Updated 8 years ago
- use crystalCPUID to identify vt-x & amd-v☆17Apr 8, 2015Updated 10 years ago