dr4k0nia / OrigamiLinks
Packer compressing .net assemblies, (ab)using the PE format for data storage
☆174Updated 2 years ago
Alternatives and similar repositories for Origami
Users that are interested in Origami are comparing it to the libraries listed below
Sorting:
- Easy XOR string encryption for NET based binaries☆138Updated last year
- A string obfuscator for .NET apps, built to evade static string analysis.☆104Updated 2 years ago
- A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET☆48Updated 2 years ago
- Universal unpacker and fixer for a number of modded ConfuserEx protections☆105Updated 4 years ago
- Learning Process Injection and Hollowing techniques☆41Updated 2 years ago
- DotNet Obfuscator/Packer☆102Updated 4 years ago
- Fud Runpe Av Evasion / All Av Bypass☆33Updated 2 years ago
- Various Process Injection Techniques☆148Updated 2 years ago
- A .NET malware loader, using API-Hashing to evade static analysis☆208Updated 2 years ago
- A C# port of the MinHook API hooking library☆214Updated 3 years ago
- Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume thread…☆160Updated last year
- NINA: No Injection, No Allocation x64 Process Injection Technique☆225Updated 4 years ago
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!☆232Updated 10 months ago
- A x64 PE Packer/Protector Developed in C++ and VisualStudio☆52Updated last year
- Nasha is a Virtual Machine for .NET files and its runtime was made in C++/CLI☆79Updated 3 years ago
- Exploit MsIo vulnerable driver☆104Updated 3 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆154Updated 2 years ago
- DarksProtector 2.0 | ConfuserEx Modded☆33Updated 4 years ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- Simple tool to extract and decompress embedded resources processed by Fody Costura☆69Updated 10 months ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆216Updated last year
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆111Updated 3 years ago
- Deobfuscator for ConfuserEx☆90Updated 8 years ago
- Detours implementation (x64/x86) which used only ntdll import☆89Updated 11 months ago
- Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.☆152Updated 2 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆245Updated 2 years ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆181Updated last year
- Executing a .NET Assembly from C++ in Memory (CLR Hosting)☆194Updated 8 years ago
- A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)☆490Updated last month
- Process Hollowing in C++ (x86 / x64) - Process PE image replacement☆151Updated last year