garzon / obfacros
obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.
☆46Updated 5 years ago
Alternatives and similar repositories for obfacros:
Users that are interested in obfacros are comparing it to the libraries listed below
- A simple program to obfuscate code written in cpp.☆47Updated 8 months ago
- Hook NtDeviceIoControlFile with PatchGuard☆103Updated 2 years ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆67Updated 3 years ago
- Call NtCreateUserProcess directly as normal.☆68Updated 2 years ago
- direct systemcalls with a modern c++20 interface.☆42Updated 2 years ago
- VMProtectTest☆37Updated last year
- Compact MBR Bootkit for Windows☆44Updated 3 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆102Updated 3 years ago
- 关于intel和amd指令行为不一样这件事☆59Updated 2 years ago
- This repo contains EXPs about Vulnerable Windows Driver☆21Updated 7 months ago
- vmp2.x devirtualization☆67Updated 2 months ago
- An extended proof-of-concept for the CVE-2021-21551 Dell ‘dbutil_2_3.sys’ Kernel Exploit☆23Updated 3 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆62Updated last year
- intel vt-x hypervisor ept☆25Updated 4 years ago
- windows kernel pagehook☆39Updated 2 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆39Updated 2 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆57Updated 3 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆42Updated 3 years ago
- ☆50Updated last year
- devirtualization vmprotect☆61Updated last year
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆22Updated 2 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆50Updated 2 years ago
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆38Updated 2 years ago
- ☆48Updated 11 months ago
- virtualization obfuscator inspired by juhajong/vm-obfuscator☆57Updated 5 years ago
- a code virtualizer based on angr☆29Updated 2 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆36Updated 2 years ago
- a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…☆18Updated last year
- Rootkit & Anti-rootkit☆39Updated 11 months ago