Command line utility for copying files on NTFS using low level disk access
☆39Mar 21, 2024Updated last year
Alternatives and similar repositories for rawccopy
Users that are interested in rawccopy are comparing it to the libraries listed below
Sorting:
- 🛡️ Secure lock screen Windows 🖥️☆32Dec 15, 2025Updated 2 months ago
- Extract Authenticode signature data from PE format file☆18Nov 17, 2019Updated 6 years ago
- Portable PDB native support☆12Nov 24, 2023Updated 2 years ago
- My solutions for HackSys Extreme Vulnerable Driver☆12Apr 22, 2018Updated 7 years ago
- Analysis and Modification Tool for Executables☆17Mar 28, 2019Updated 6 years ago
- Sample libraries to be used with IAT Patcher☆37Oct 1, 2022Updated 3 years ago
- Portable & Custmizable Windows Defender☆13Nov 10, 2021Updated 4 years ago
- The Tiny C Compiler (a.k.a. TCC, tCc, or TinyCC) is an x86, X86-64 and ARM processor C compiler initially written by Fabrice Bellard.☆22Oct 5, 2022Updated 3 years ago
- Custom KiSystemStartup, can be used to modificate kernel before boot.☆53Apr 7, 2022Updated 3 years ago
- This repo contains miscellaneous tools to aid in your malware analysis.☆13Mar 2, 2021Updated 5 years ago
- RESTful API for Unipacker (https://github.com/unipacker/unipacker)☆15Mar 12, 2021Updated 4 years ago
- ☆16Sep 12, 2021Updated 4 years ago
- PowerShell Over WMI☆16Apr 23, 2019Updated 6 years ago
- IDA script for vmprotect Windows Api address decoder☆54Jun 8, 2021Updated 4 years ago
- Popular driver source with guarded regions bypass☆15Nov 12, 2022Updated 3 years ago
- Sysmon shenanigans☆66Oct 9, 2020Updated 5 years ago
- Registry Miner☆14Apr 10, 2018Updated 7 years ago
- x64dbg scripts for finding OEP of packers☆15Oct 22, 2018Updated 7 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- A skeleton WinRT component that can serve as a substitute for the Region Policy Evaluator in Windows.☆15Nov 28, 2023Updated 2 years ago
- An example of Windows NT Native API application and kernel driver☆22Feb 10, 2020Updated 6 years ago
- ☆20Nov 8, 2020Updated 5 years ago
- ☆18May 16, 2013Updated 12 years ago
- Shared libraries for other projects☆22Feb 20, 2026Updated 2 weeks ago
- Static analysis tool that detects potential ransomware in PE and ELF files through heuristic analysis☆20Jan 16, 2024Updated 2 years ago
- ☆39Nov 24, 2022Updated 3 years ago
- Windows kernel drivers simple HTTP library for modern C++☆40Jul 12, 2018Updated 7 years ago
- User-mode part of Zerokit platform☆22Mar 30, 2019Updated 6 years ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆98Aug 27, 2022Updated 3 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆193Jul 10, 2023Updated 2 years ago
- Windows package listing and uninstallation☆55Jun 15, 2023Updated 2 years ago
- A WIP WebAssembly decompiler, targeted at Il2CPP games☆23Sep 28, 2024Updated last year
- Bypassing EasyAntiCheat.sys self-integrity by abusing call hierarchy☆83Oct 6, 2022Updated 3 years ago
- Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware☆58Aug 6, 2025Updated 7 months ago
- Windows overlay FS explorations☆25Dec 7, 2015Updated 10 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Apr 13, 2018Updated 7 years ago
- All about CVE-2022-30190, aka follina, that is a RCE vulnerability that affects Microsoft Support Diagnostic Tools (MSDT) on Office apps …☆22Aug 6, 2022Updated 3 years ago
- Windows Console Monitor☆34Jun 11, 2019Updated 6 years ago