hasherezade / pe-bear-releasesLinks
PE-bear (builds only)
☆780Updated 2 years ago
Alternatives and similar repositories for pe-bear-releases
Users that are interested in pe-bear-releases are comparing it to the libraries listed below
Sorting:
- Dynamic unpacker based on PE-sieve☆751Updated 2 months ago
- A Pin Tool for tracing API calls etc☆1,524Updated 2 months ago
- PE file viewer/editor for Windows, Linux and MacOS.☆1,127Updated this week
- Linker/Compiler/Tool detector for Windows, Linux and MacOS.☆567Updated this week
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆998Updated last year
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,269Updated 3 months ago
- XNTSV program for detailed viewing of system structures for Windows.☆465Updated this week
- Portable Executable parsing library (from PE-bear)☆657Updated 4 months ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,209Updated 3 months ago
- Windows kernel and user mode emulation.☆1,740Updated 4 months ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆821Updated 3 years ago
- Converts a DLL into EXE☆815Updated 2 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆1,156Updated 2 years ago
- Quickly debug shellcode extracted during malware analysis☆610Updated 2 years ago
- Obfuscate specific windows apis with different apis☆1,009Updated 4 years ago
- Protected Processes Light Killer☆951Updated 2 years ago
- A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.☆706Updated 5 years ago
- Process Monitor X v2☆628Updated last year
- Windows System Explorer☆864Updated last year
- ☆818Updated 5 years ago
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆769Updated last year
- Native API header files for the System Informer project.☆1,243Updated 3 months ago
- Enumerate and disable common sources of telemetry used by AV/EDR.☆808Updated 4 years ago
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆708Updated last week
- Converts a EXE into DLL☆1,336Updated last week
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆826Updated last year
- An index of Windows binaries, including download links for executables such as exe, dll and sys files☆694Updated this week
- Windows Object Explorer 64-bit☆1,806Updated this week
- Some of my publicly available Malware analysis and Reverse engineering.☆823Updated last year
- AV/EDR evasion via direct system calls.☆1,913Updated 2 years ago