CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to identify and watch malware that has created a hidden desktop.
☆35May 27, 2016Updated 9 years ago
Alternatives and similar repositories for CmdDesktopSwitch
Users that are interested in CmdDesktopSwitch are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆18Oct 7, 2016Updated 9 years ago
- A C++11 command line parser☆14Feb 26, 2017Updated 9 years ago
- Scripts targeting specific families☆13Jul 3, 2017Updated 8 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Jan 5, 2026Updated 2 months ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- ☆16Apr 14, 2020Updated 5 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Apr 21, 2021Updated 4 years ago
- ☆11Jun 9, 2020Updated 5 years ago
- please use https://github.com/fireeye/vivisect instead☆16Oct 21, 2025Updated 5 months ago
- ☆14Sep 6, 2019Updated 6 years ago
- Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.☆25Mar 2, 2024Updated 2 years ago
- Miscellaneous examples for use with Cobalt Strike Beacon☆10Nov 19, 2020Updated 5 years ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34May 21, 2019Updated 6 years ago
- ☆16Sep 7, 2017Updated 8 years ago
- GoLang binary pclntab mangler☆14Mar 2, 2020Updated 6 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆24Jan 6, 2023Updated 3 years ago
- A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.☆17Jul 2, 2021Updated 4 years ago
- ☆45Aug 16, 2018Updated 7 years ago
- Rashell is Bash-like command processor for Windows☆13Aug 24, 2022Updated 3 years ago
- Import library generator for x86 PE files☆59Apr 8, 2019Updated 6 years ago
- WPF で Windows PowerShell コンソールを再現します。☆17Dec 22, 2016Updated 9 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆28Apr 13, 2023Updated 2 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆17Oct 8, 2016Updated 9 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆43May 26, 2019Updated 6 years ago
- Dump Teams conversations☆18Jun 9, 2021Updated 4 years ago
- Kernel-mode file scanner☆19Jul 16, 2018Updated 7 years ago
- Static based decoders for malware samples☆94Jul 27, 2020Updated 5 years ago
- Recon 2015 Presentation from Alex Ionescu☆250Jan 27, 2016Updated 10 years ago
- Allows console commands to be sent to source-engine games (hl2.exe). Works with text-mode clients.☆17Sep 14, 2012Updated 13 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆19Jul 15, 2021Updated 4 years ago
- ☆49Jan 13, 2020Updated 6 years ago
- Some eternal WIP stuff :)☆21Nov 18, 2025Updated 4 months ago
- Full DLL Hooking, phrack 65☆53Aug 11, 2023Updated 2 years ago
- Export disassemblies into Protocol Buffers☆21Jul 18, 2025Updated 8 months ago
- An instrumentation script based on Frida which leverages Control Flow Guard to intercept indirect calls in CFG-enabled Windows binaries.☆31Jun 24, 2015Updated 10 years ago
- A Maltego transform for VirusTotal vHash☆32Oct 12, 2019Updated 6 years ago
- Injectable DLL that helps with debugging Wibu CodeMeter.☆23Nov 9, 2017Updated 8 years ago
- Example/starter code for custom Windows application compatibility shims☆38Dec 27, 2020Updated 5 years ago
- Code injection via delay load libraries☆36Sep 20, 2017Updated 8 years ago