A ready-made template for a project based on libpeconv.
☆53Apr 18, 2026Updated last month
Alternatives and similar repositories for libpeconv_tpl
Users that are interested in libpeconv_tpl are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A wrapper for capstone for bearparser☆16Oct 8, 2025Updated 8 months ago
- A CMake template for projects using MS Detours☆23Feb 18, 2025Updated last year
- A set of small utilities, helpers for PIN tracers☆40Feb 15, 2026Updated 3 months ago
- A small library helping to parse commandline parameters (for C/C++)☆59Apr 7, 2026Updated 2 months ago
- ☆24Feb 3, 2021Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- My solutions for random crackmes and other challenges☆12Dec 23, 2019Updated 6 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆20Apr 13, 2018Updated 8 years ago
- Decoders for 7ev3n ransomware☆17Oct 24, 2016Updated 9 years ago
- My solutions for HackSys Extreme Vulnerable Driver☆12Apr 22, 2018Updated 8 years ago
- Parsers for custom malware formats ("Funky malware formats")☆98Jan 8, 2022Updated 4 years ago
- Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware☆59Aug 6, 2025Updated 10 months ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆98Jun 24, 2021Updated 4 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆189Apr 22, 2025Updated last year
- Sample libraries to be used with IAT Patcher☆37Oct 1, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- My small projects writen in 16 bit asm (NOTE: those are my practice projects that I wrote when I was 15, I give no warranty for this code…☆22Oct 14, 2021Updated 4 years ago
- A bin2bin code virtualizer for x86-64 PE's☆148Jun 6, 2026Updated last week
- A more stealthy variant of "DLL hollowing"☆366Mar 8, 2024Updated 2 years ago
- ViDi Visual Disassembler (experimental)☆79Oct 8, 2025Updated 8 months ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,360Apr 18, 2026Updated last month
- Probably the easiest way to setup new beacon notifications in Cobalt Strike☆10Jan 7, 2022Updated 4 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- Persistent IAT hooking application - based on bearparser☆266Sep 18, 2022Updated 3 years ago
- WIP python3 plugin for x64dbg☆16Mar 31, 2021Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Demos of various (also non standard) persistence methods used by malware☆227Mar 5, 2023Updated 3 years ago
- A template for projects using both libPeConv and MS Detours☆16Oct 5, 2025Updated 8 months ago
- Archive of ransomware decryptors☆35Dec 7, 2017Updated 8 years ago
- VCL-based UI components for system tools that use NtUtilsLibrary☆22Jun 7, 2026Updated last week
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆649Aug 30, 2022Updated 3 years ago
- ☆77Nov 30, 2023Updated 2 years ago
- PEAnalyser is an open source PE file analysis tool.☆11Oct 26, 2020Updated 5 years ago
- Kernel (Ring0) - SSDT unhook driver☆14Feb 22, 2018Updated 8 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆38Jan 12, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Three Tiny Examples of Directly Using Vista's NtCreateUserProcess☆89Nov 9, 2015Updated 10 years ago
- ☆45Oct 7, 2018Updated 7 years ago
- ☆74Sep 4, 2023Updated 2 years ago
- a demo for x86/x64's paging memory management learning, convert a virtual address from ring3 to physical address in ring0☆18Aug 26, 2017Updated 8 years ago
- IFL - Interactive Functions List (plugin for IDA Pro)☆493Feb 27, 2026Updated 3 months ago
- Set of antianalysis techniques found in malware☆133Aug 25, 2023Updated 2 years ago
- MalUnpack companion driver☆97Jun 17, 2024Updated last year