hasherezade / pe2picLinks
Small visualizator for PE files
☆69Updated last year
Alternatives and similar repositories for pe2pic
Users that are interested in pe2pic are comparing it to the libraries listed below
Sorting:
- A collection of shellcode hashes☆17Updated 6 years ago
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- Sysmon shenanigans☆66Updated 4 years ago
- a PE Loader and Windows API tracer. Useful in malware analysis.☆143Updated 2 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Extract data of TTD trace file to a minidump☆30Updated 2 years ago
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆80Updated 11 months ago
- ☆25Updated last year
- Clone running process with ZwCreateProcess☆58Updated 4 years ago
- The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent …☆39Updated 2 years ago
- Windows kernel PDB data parsed into YAML☆38Updated 8 months ago
- C# implementation to produce ROR-13 numeric hash for given function API name☆33Updated 6 years ago
- ☆74Updated last year
- ☆70Updated 6 months ago
- ☆71Updated 2 years ago
- Quickly search for references to a GUID in DLLs, EXEs, and drivers☆74Updated 3 years ago
- A Practical example of ELAM (Early Launch Anti-Malware)☆35Updated 3 years ago
- A novel technique to communicate between threads using the standard ETHREAD structure☆113Updated 4 years ago
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆54Updated 3 years ago
- Windows API Hashes used in the malwares☆42Updated 9 years ago
- Windows user-land hooks manipulation tool.☆145Updated 4 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆35Updated 4 years ago
- A set of small utilities, helpers for PIN tracers☆32Updated last year
- This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …☆31Updated 4 years ago
- Rite Of Passage ROP Injector☆34Updated 6 years ago
- ☆36Updated 3 years ago
- An Xdbg Plugin of the ERC Library.☆26Updated last year
- Enumerate various traits from Windows processes as an aid to threat hunting☆187Updated 3 years ago
- A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…☆97Updated 5 years ago