herrcore / CmdDesktopSwitchLinks
CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to identify and watch malware that has created a hidden desktop.
☆35Updated 9 years ago
Alternatives and similar repositories for CmdDesktopSwitch
Users that are interested in CmdDesktopSwitch are comparing it to the libraries listed below
Sorting:
- A simple utility to list all methods of a given .NET Assembly and to invoke them☆75Updated 4 years ago
- CAPE monitor DLLs☆41Updated 5 years ago
- ☆23Updated 4 years ago
- DLL Injection Library & Tools☆73Updated 9 years ago
- Sample libraries to be used with IAT Patcher☆36Updated 3 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆124Updated 5 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆77Updated 11 years ago
- a program to detect reflective dll injection on a live machine☆75Updated 9 years ago
- The Minimalistic x86/x64 API Hooking Library for Windows☆32Updated 7 years ago
- Experimental Windows .text section Patch Detector☆22Updated 10 years ago
- A simple API monitor for Windbg☆64Updated 8 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 7 years ago
- Experimental: Windows .text section compare - disk versus memory☆15Updated 10 years ago
- Blog posts☆29Updated 5 years ago
- My collection of unpackers for malware packers/crypters☆28Updated 8 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Updated 9 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 8 years ago
- A session-0 capable dll injection utility☆76Updated 7 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 12 years ago
- ☆46Updated 7 years ago
- Windows Console Monitoring☆100Updated 8 years ago
- Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation☆25Updated 7 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆53Updated 7 years ago
- Archive of ransomware decryptors☆33Updated 7 years ago
- Enumerate Windows Defender threat families and dump their names according category☆93Updated 6 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Updated 7 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 6 years ago
- ☆24Updated 6 years ago
- Parsers for custom malware formats ("Funky malware formats")☆97Updated 3 years ago