guitmz / nasty
Reverse text segment x64 ELF infector written in Assembly
☆16Updated 2 years ago
Related projects: ⓘ
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆69Updated last year
- Abusing exceptions for code execution.☆104Updated last year
- Helper idapython code for reversing kmdf drivers☆68Updated 2 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆94Updated 4 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- Local OXID Resolver (LCLOR) : Research and Tooling☆31Updated 3 years ago
- Process Injection without R/W target memory and without creating a remote thread☆19Updated 2 years ago
- ☆14Updated 2 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆57Updated last month
- A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.☆93Updated 2 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 4 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- In line function hooking LKM rootkit☆51Updated 4 years ago
- ☆21Updated 5 years ago
- Enabled / Disable LSA Protection via BYOVD☆61Updated 2 years ago
- Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers☆35Updated last week
- ☆44Updated 4 years ago
- TrashDBG the world's worse debugger☆24Updated 2 years ago
- Heappo 🦛 is a PyKD based extensions for WinDBG which aids Heap Exploitation☆13Updated 4 years ago
- Sample project for kernel debugging automation with Vagrant☆57Updated 4 years ago
- C# implementation to produce ROR-13 numeric hash for given function API name☆31Updated 5 years ago
- Here are some of my malware reversing papers that I will be publishing☆30Updated 2 years ago
- A set of small utilities, helpers for PIN tracers☆31Updated 11 months ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆31Updated last year
- Binary Ninja plugin to perform automated analysis of Windows drivers☆16Updated 5 years ago
- CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)☆29Updated 2 years ago
- ☆27Updated last year
- ☆43Updated 2 years ago
- ☆19Updated this week
- ☆22Updated 4 years ago