edix / MalwareResourceScanner
Scanning and identifying XOR encrypted PE files in PE resources
☆27Updated 10 years ago
Related projects ⓘ
Alternatives and complementary repositories for MalwareResourceScanner
- Anti-AV compilation☆42Updated 11 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 7 years ago
- ☆13Updated 7 years ago
- Malware monitor template based on MinHook☆16Updated 9 years ago
- Common Malware Techniques☆13Updated last year
- The Grum Spam Bot☆20Updated 9 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 7 years ago
- Code Injector Using Code Caves☆14Updated 9 years ago
- Simple tool for unpacking packed/protected malware executables.☆32Updated 13 years ago
- Malware analyses and helpful scripts☆29Updated 2 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Updated 9 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆36Updated 7 years ago
- ☆28Updated 7 years ago
- Framework complet d'analyse de malware☆12Updated 8 years ago
- Analysis and Modification Tool for Executables☆16Updated 5 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆26Updated 7 years ago
- Bootkits Revisited☆41Updated 10 years ago
- wow64 syscall filter☆13Updated 9 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆21Updated 7 years ago
- Class implementation of PowerLoader injection technique☆29Updated 7 years ago
- Reflective DLL Injection style process infector☆19Updated 6 years ago
- Windows registry files interactive viewer☆9Updated 7 years ago
- Logs instruction hits to a file which can be fed into IDA Pro to highlight which instructions were called.☆41Updated 11 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- A collection of anti disassembly techniques☆18Updated 7 years ago
- CVE-2014-0816☆24Updated 8 years ago