dsnezhkov / elfpack
☆43Updated 2 years ago
Related projects: ⓘ
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆94Updated 4 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆31Updated 3 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆22Updated last year
- Extract data of TTD trace file to a minidump☆28Updated last year
- Winbindex bot to pull in binaries for specific releases☆44Updated last year
- A collection of shellcode hashes☆17Updated 6 years ago
- C# implementation to produce ROR-13 numeric hash for given function API name☆31Updated 5 years ago
- Helper idapython code for reversing kmdf drivers☆68Updated 2 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 4 years ago
- Go Lang Portable Executable Parser☆37Updated 3 years ago
- ☆49Updated 4 years ago
- ☆26Updated 5 years ago
- ☆14Updated 2 years ago
- Finds imports that could be exploited, still requires manual analysis.☆26Updated last year
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 4 years ago
- SPI flash read MitM attack PoC☆34Updated 2 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆49Updated 2 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- ☆28Updated 4 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆41Updated 4 years ago
- Proxy system calls over an RPC channel☆96Updated 2 years ago
- rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆12Updated last year
- Enabled / Disable LSA Protection via BYOVD☆61Updated 2 years ago
- ☆49Updated this week
- ☆66Updated last year
- ☆18Updated last year
- Inter-Process Communication Mechanisms☆24Updated 4 years ago
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆23Updated 3 years ago
- ☆12Updated 2 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆35Updated 3 years ago