Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
☆59Aug 6, 2025Updated 9 months ago
Alternatives and similar repositories for hidden_bee_tools
Users that are interested in hidden_bee_tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆20Apr 13, 2018Updated 8 years ago
- My solutions for HackSys Extreme Vulnerable Driver☆12Apr 22, 2018Updated 8 years ago
- A set of small utilities, helpers for PIN tracers☆40Feb 15, 2026Updated 3 months ago
- A wrapper for capstone for bearparser☆16Oct 8, 2025Updated 7 months ago
- Parsers for custom malware formats ("Funky malware formats")☆98Jan 8, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- My solutions for random crackmes and other challenges☆12Dec 23, 2019Updated 6 years ago
- A ready-made template for a project based on libpeconv.☆53Apr 18, 2026Updated last month
- A CMake template for projects using MS Detours☆23Feb 18, 2025Updated last year
- Archive of ransomware decryptors☆34Dec 7, 2017Updated 8 years ago
- Rust crate to parse user-mode minidump files generated on Windows☆18Nov 17, 2025Updated 6 months ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆98Jun 24, 2021Updated 4 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆229Mar 22, 2023Updated 3 years ago
- Sample libraries to be used with IAT Patcher☆37Oct 1, 2022Updated 3 years ago
- My metasploit modules☆24Jan 8, 2016Updated 10 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Decoders for 7ev3n ransomware☆17Oct 24, 2016Updated 9 years ago
- Converts a DLL into EXE☆816Jul 23, 2023Updated 2 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆32Aug 12, 2022Updated 3 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆189Apr 22, 2025Updated last year
- Python wrappers for mal_unpack☆37Sep 19, 2023Updated 2 years ago
- Password scrambler - a deterministic password re-generator (alternative to a password manager)☆132Jan 2, 2023Updated 3 years ago
- Set of my small utils related to cryptography, encoding, decoding etc☆96Sep 1, 2025Updated 8 months ago
- Scripts for communication with Bunitu Trojan C&Cs☆19Oct 29, 2015Updated 10 years ago
- Set of antianalysis techniques found in malware☆133Aug 25, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Offensive Assembly code snippets.☆13Jul 12, 2023Updated 2 years ago
- A small library helping to parse commandline parameters (for C/C++)☆59Apr 7, 2026Updated last month
- Common Malware Techniques☆13Mar 26, 2023Updated 3 years ago
- Plog - A simple and powerful keylogger !☆11Jun 28, 2018Updated 7 years ago
- Techniques that i have used to evade anti-virus during pen tests.☆13May 29, 2018Updated 7 years ago
- Simple VM-based scripting language☆13Feb 25, 2020Updated 6 years ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- IFL - Interactive Functions List (plugin for IDA Pro)☆492Feb 27, 2026Updated 2 months ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆23Nov 22, 2021Updated 4 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆63Aug 21, 2024Updated last year
- IDA plugin to deobfuscate emotet CFF☆18Apr 26, 2022Updated 4 years ago
- Win32 API and COM hooking/tracing.☆30Jul 21, 2016Updated 9 years ago
- Programmatically access a TLS certificate chain in C++ and C#☆12Oct 27, 2018Updated 7 years ago
- Get windows CPU temperature with WinRing0 driver and library☆25Jan 10, 2019Updated 7 years ago
- A TCP-Client connected Keylogger in C#☆12Mar 14, 2017Updated 9 years ago
- A more stealthy variant of "DLL hollowing"☆365Mar 8, 2024Updated 2 years ago