hasherezade/hidden_bee_tools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hasherezade/hidden_bee_tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hasherezade/hidden_bee_tools)

Close

hasherezade / hidden_bee_toolsView on GitHubMore

• External links
• Readme badge

Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware

☆59Aug 6, 2025Updated 8 months ago

Alternatives and similar repositories for hidden_bee_tools

Users that are interested in hidden_bee_tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• hasherezade / loaderine

  View on GitHub
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆22Apr 13, 2018Updated 7 years ago
• hasherezade / wke_exercises

  View on GitHub
  My solutions for HackSys Extreme Vulnerable Driver
  ☆12Apr 22, 2018Updated 7 years ago
• hasherezade / pe_utils

  View on GitHub
  A set of small utilities, helpers for PIN tracers
  ☆38Feb 15, 2026Updated last month
• hasherezade / beardisasm

  View on GitHub
  A wrapper for capstone for bearparser
  ☆16Oct 8, 2025Updated 6 months ago
• hasherezade / funky_malware_formats

  View on GitHub
  Parsers for custom malware formats ("Funky malware formats")
  ☆98Jan 8, 2022Updated 4 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• hasherezade / challs

  View on GitHub
  My solutions for random crackmes and other challenges
  ☆12Dec 23, 2019Updated 6 years ago
• hasherezade / libpeconv_tpl

  View on GitHub
  A ready-made template for a project based on libpeconv.
  ☆52Mar 28, 2026Updated 2 weeks ago
• hasherezade / detours_cmake_tpl

  View on GitHub
  A CMake template for projects using MS Detours
  ☆23Feb 18, 2025Updated last year
• hasherezade / decryptors_archive

  View on GitHub
  Archive of ransomware decryptors
  ☆34Dec 7, 2017Updated 8 years ago
• joaoviictorti / userdmp

  View on GitHub
  Rust crate to parse user-mode minidump files generated on Windows
  ☆18Nov 17, 2025Updated 4 months ago
• hasherezade / process_chameleon

  View on GitHub
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆100Jun 24, 2021Updated 4 years ago
• hasherezade / chimera_pe

  View on GitHub
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆230Mar 22, 2023Updated 3 years ago
• hasherezade / IAT_patcher_samples

  View on GitHub
  Sample libraries to be used with IAT Patcher
  ☆37Oct 1, 2022Updated 3 years ago
• hasherezade / metasploit_modules

  View on GitHub
  My metasploit modules
  ☆24Jan 8, 2016Updated 10 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• hasherezade / 7ev3n_decoders

  View on GitHub
  Decoders for 7ev3n ransomware
  ☆17Oct 24, 2016Updated 9 years ago
• hasherezade / dll_to_exe

  View on GitHub
  Converts a DLL into EXE
  ☆815Jul 23, 2023Updated 2 years ago
• paranoidninja / DotNetTracer

  View on GitHub
  C code to enable ETW tracing for Dotnet Assemblies
  ☆32Aug 12, 2022Updated 3 years ago
• hasherezade / masm_shc

  View on GitHub
  A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
  ☆188Apr 22, 2025Updated 11 months ago
• hasherezade / password_scrambler

  View on GitHub
  Password scrambler - a deterministic password re-generator (alternative to a password manager)
  ☆132Jan 2, 2023Updated 3 years ago
• hasherezade / mal_unpack_py

  View on GitHub
  Python wrappers for mal_unpack
  ☆37Sep 19, 2023Updated 2 years ago
• hasherezade / crypto_utils

  View on GitHub
  Set of my small utils related to cryptography, encoding, decoding etc
  ☆95Sep 1, 2025Updated 7 months ago
• hasherezade / bunitu_tests

  View on GitHub
  Scripts for communication with Bunitu Trojan C&Cs
  ☆19Oct 29, 2015Updated 10 years ago
• hasherezade / paramkit

  View on GitHub
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated this week
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• hasherezade / antianalysis_demos

  View on GitHub
  Set of antianalysis techniques found in malware
  ☆132Aug 25, 2023Updated 2 years ago
• lem0nSec / ASM_World

  View on GitHub
  Offensive Assembly code snippets.
  ☆13Jul 12, 2023Updated 2 years ago
• hailehong95 / practice-maldev

  View on GitHub
  Common Malware Techniques
  ☆13Mar 26, 2023Updated 3 years ago
• ParsingTeam / Plog

  View on GitHub
  Plog - A simple and powerful keylogger !
  ☆11Jun 28, 2018Updated 7 years ago
• arunvnnk / AVbypass

  View on GitHub
  Techniques that i have used to evade anti-virus during pen tests.
  ☆13May 29, 2018Updated 7 years ago
• amyinorbit / orbitvm

  View on GitHub
  Simple VM-based scripting language
  ☆13Feb 25, 2020Updated 6 years ago
• kouzhudong / InjectDll

  View on GitHub
  Inject dll to process in driver
  ☆10Aug 27, 2024Updated last year
• hasherezade / pin_n_sieve

  View on GitHub
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆63Aug 21, 2024Updated last year
• alfarom256 / UserVAtoPhysical

  View on GitHub
  Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address
  ☆23Nov 22, 2021Updated 4 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• ElvisBlue / emotet-deobfuscator

  View on GitHub
  IDA plugin to deobfuscate emotet CFF
  ☆18Apr 26, 2022Updated 3 years ago
• jonasblunck / DP

  View on GitHub
  Win32 API and COM hooking/tracing.
  ☆30Jul 21, 2016Updated 9 years ago
• malcomvetter / CertCheck

  View on GitHub
  Programmatically access a TLS certificate chain in C++ and C#
  ☆12Oct 27, 2018Updated 7 years ago
• ashleyhung / WinRing0

  View on GitHub
  Get windows CPU temperature with WinRing0 driver and library
  ☆25Jan 10, 2019Updated 7 years ago
• hasherezade / module_overloading

  View on GitHub
  A more stealthy variant of "DLL hollowing"
  ☆365Mar 8, 2024Updated 2 years ago
• farfella / in-memory-cpython

  View on GitHub
  An In-memory Embedding of CPython
  ☆31May 24, 2021Updated 4 years ago
• hasherezade / tag_converter

  View on GitHub
  ☆23Feb 3, 2021Updated 5 years ago