An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
☆62Jun 9, 2026Updated last month
Alternatives and similar repositories for pin_n_sieve
Users that are interested in pin_n_sieve are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Headers for linking your software with ntdll.dll☆16Nov 4, 2020Updated 5 years ago
- Windows x64 Process Scanner to detect application compatability shims☆38Oct 17, 2018Updated 7 years ago
- Automatic DLL comment link generation and explaination of the DLL Proxying techniques☆10Aug 19, 2021Updated 4 years ago
- Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging☆580Mar 8, 2024Updated 2 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆17Sep 29, 2018Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Triton based symbolic emulator☆15Oct 30, 2022Updated 3 years ago
- MalUnpack companion driver☆96Jun 17, 2024Updated 2 years ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 4 years ago
- Various shellcodes☆12Sep 1, 2020Updated 5 years ago
- c++ implementation of windows heavens gate☆70Feb 12, 2021Updated 5 years ago
- A kernel mode Windows rootkit in development.☆47Dec 31, 2021Updated 4 years ago
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆218Feb 20, 2023Updated 3 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆109May 27, 2021Updated 5 years ago
- Interprocess communication library, providing the ability to call functions from each other☆20Oct 3, 2019Updated 6 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- An example of how x64 kernel shellcode can dynamically find and use APIs☆103May 14, 2020Updated 6 years ago
- A set of small utilities, helpers for PIN tracers☆40Feb 15, 2026Updated 4 months ago
- [deprecated] Simple x64dbg plugin to save a full memory dump☆51Oct 10, 2022Updated 3 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- Universal x86/x64 VMProtect 2.0-3.X Import fixer☆31Dec 29, 2021Updated 4 years ago
- Demos of various (also non standard) persistence methods used by malware☆228Mar 5, 2023Updated 3 years ago
- sc4cpp is a shellcode framework based on C++☆95Aug 29, 2021Updated 4 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42May 9, 2019Updated 7 years ago
- PoC memory injection detection agent based on ETW, for offensive and defensive research purposes☆298Apr 10, 2021Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Parsers for custom malware formats ("Funky malware formats")☆97Jan 8, 2022Updated 4 years ago
- ☆29Jan 15, 2021Updated 5 years ago
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- A small library helping to parse commandline parameters (for C/C++)☆60Apr 7, 2026Updated 3 months ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆230Mar 22, 2023Updated 3 years ago
- Shell extension for opening executables in IDA☆188Feb 17, 2023Updated 3 years ago
- 新的注入方式☆11Sep 30, 2018Updated 7 years ago
- A more stealthy variant of "DLL hollowing"☆367Mar 8, 2024Updated 2 years ago
- Bypasses for Windows kernel callbacks PatchGuard protection☆44Aug 15, 2021Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A DTrace on Windows Reimplementation☆375May 28, 2026Updated last month
- Windows System Programming Experiments☆222Jun 13, 2022Updated 4 years ago
- A quick tool for hiding a new process running shellcode.☆57Jun 10, 2020Updated 6 years ago
- detect hypervisor with Nmi Callback☆41Sep 25, 2022Updated 3 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- Set of my small utils related to cryptography, encoding, decoding etc☆96Sep 1, 2025Updated 10 months ago
- Evasive Process Hollowing Techniques☆143Aug 16, 2020Updated 5 years ago