googleprojectzero / sandbox-attacksurface-analysis-toolsLinks
Set of tools to analyze Windows sandboxes for exposed attack surface.
☆2,222Updated 3 months ago
Alternatives and similar repositories for sandbox-attacksurface-analysis-tools
Users that are interested in sandbox-attacksurface-analysis-tools are comparing it to the libraries listed below
Sorting:
- ☆808Updated 2 years ago
- HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux☆2,793Updated 6 months ago
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆998Updated last year
- PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.☆653Updated last year
- A fork of AFL for fuzzing Windows binaries☆2,462Updated last week
- A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container☆1,302Updated 8 months ago
- Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)☆2,394Updated 4 months ago
- DEFCON 27 workshop - Modern Debugging with WinDbg Preview☆734Updated 9 months ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,407Updated 3 months ago
- A collection of links related to VMware escape exploits☆1,455Updated 11 months ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆1,156Updated 2 years ago
- Security Research from the Microsoft Security Response Center (MSRC)☆1,365Updated last year
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆821Updated 3 years ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,356Updated last year
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,290Updated 4 years ago
- AV/EDR evasion via direct system calls.☆1,913Updated 2 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,984Updated last week
- Token Privilege Research☆844Updated 7 years ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆3,043Updated 2 years ago
- Checksec, but for Windows: static detection of security mitigations in executables☆599Updated 7 months ago
- Windows Object Explorer 64-bit☆1,806Updated this week
- A memory scanning evasion technique☆885Updated 8 years ago
- Demos of various injection techniques found in malware☆794Updated 3 years ago
- Windows Event Log Killer☆1,797Updated last year
- Run PowerShell with rundll32. Bypass software restrictions.☆1,809Updated 4 years ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,211Updated 3 months ago
- All reasonably stable tools☆1,315Updated last month
- A static analyzer for PE executables.☆1,078Updated last year
- Windows kernel and user mode emulation.☆1,740Updated 4 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆1,614Updated 6 years ago