hasherezade / pesieve-goLinks
Golang bindings for PE-sieve
☆42Updated last year
Alternatives and similar repositories for pesieve-go
Users that are interested in pesieve-go are comparing it to the libraries listed below
Sorting:
- ☆37Updated 2 years ago
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆107Updated 7 months ago
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u …☆54Updated 3 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously☆31Updated 2 years ago
- Unpacker for donut shellcode☆17Updated 5 years ago
- ☆24Updated 8 months ago
- Linux Sleep Obfuscation☆106Updated last year
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆66Updated 3 years ago
- The AMSI server for Avred☆30Updated 2 years ago
- A more reliable way of resolving syscall numbers in Windows☆52Updated last year
- ☆27Updated 10 months ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated 2 years ago
- General malware analysis stuff☆37Updated last year
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated 2 years ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆15Updated last year
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆51Updated 2 years ago
- Collection of Rust repos useful for Red Teamers.☆34Updated 3 years ago
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆32Updated 2 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆39Updated 3 years ago
- ☆30Updated last month
- ☆12Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk☆46Updated 3 years ago
- Bypass Malware Time Delays☆104Updated 3 years ago
- ☆17Updated last year
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆57Updated last year
- A Poc on blocking Procmon from monitoring network events☆107Updated last month
- Repo containing my public talks☆23Updated 2 years ago
- Ghosting-AMSI☆17Updated 5 months ago