hasherezade / libpeconv_and_detours_tpl

Related projects: ⓘ

• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆40Updated last year
• SandboxEscaper / msihijacker
  ☆31Updated this week
• am0nsec / vxlib
  C Header Only Library for Virii
  ☆9Updated 3 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 5 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆31Updated 11 months ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆30Updated 4 years ago
• slaeryan / WKPExercises
  ☆19Updated this week
• zodiacon / AccessMask
  ☆18Updated 5 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆24Updated 4 years ago
• namazso / PEDiffGen
  Subtract one PE file from another!
  ☆19Updated 2 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆32Updated 3 years ago
• Coldzer0 / TinyPDBParser
  Windows PDB Parser using Imagehlp library.
  ☆16Updated 2 years ago
• ch3rn0byl / WinDbg-Extensions
  ☆17Updated 3 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆46Updated last year
• d35ha / PEReflectiveInjection
  Remote PE reflective injection with a simple reflective loader
  ☆28Updated 5 years ago
• mobdk / CloneProcess
  Clone running process with ZwCreateProcess
  ☆58Updated 3 years ago
• 86hh / BEAUTIFULSKY
  ☆21Updated 5 years ago
• 0xMegaByte / COM-Explained
  ☆27Updated last year
• am0nsec / masm64
  Collection of structures, prototype and examples for Microsoft Macro Assembler (MASM) x64.
  ☆15Updated 4 years ago
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆30Updated 8 months ago
• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 3 years ago
• DoubleLabyrinth / ProcessHollowing
  ☆35Updated 5 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆38Updated 3 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• mudlord / mupack
  ☆23Updated this week
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆27Updated 2 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆53Updated last year
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆35Updated 9 years ago