CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to identify and watch malware that has created a hidden desktop.
☆35May 27, 2016Updated 9 years ago
Alternatives and similar repositories for CmdDesktopSwitch
Users that are interested in CmdDesktopSwitch are comparing it to the libraries listed below
Sorting:
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆18Oct 7, 2016Updated 9 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Apr 21, 2021Updated 4 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- Windows Server 2K3 NT 5☆12Apr 17, 2021Updated 4 years ago
- ☆11Jun 9, 2020Updated 5 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Jan 5, 2026Updated last month
- ☆16Apr 14, 2020Updated 5 years ago
- please use https://github.com/fireeye/vivisect instead☆16Oct 21, 2025Updated 4 months ago
- Scripts targeting specific families☆13Jul 3, 2017Updated 8 years ago
- Import library generator for x86 PE files☆59Apr 8, 2019Updated 6 years ago
- ☆16Sep 7, 2017Updated 8 years ago
- PoC compilation of libyara into WASM, for potential future CyberChef integration☆14Sep 18, 2022Updated 3 years ago
- GoLang binary pclntab mangler☆14Mar 2, 2020Updated 5 years ago
- Kernel-mode file scanner☆19Jul 16, 2018Updated 7 years ago
- Malware vulnerability research. Coming soon..☆12Apr 20, 2020Updated 5 years ago
- The Visual Studio extension that measures load time of each project when a solution file is opened.☆17Jan 5, 2019Updated 7 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆43May 26, 2019Updated 6 years ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34May 21, 2019Updated 6 years ago
- Example/starter code for custom Windows application compatibility shims☆38Dec 27, 2020Updated 5 years ago
- Injectable DLL that helps with debugging Wibu CodeMeter.☆23Nov 9, 2017Updated 8 years ago
- Code injection via delay load libraries☆36Sep 20, 2017Updated 8 years ago
- Dump Teams conversations☆18Jun 9, 2021Updated 4 years ago
- ViDi Visual Disassembler (experimental)☆79Oct 8, 2025Updated 4 months ago
- A simple DLL that can intercept HID messages and pass them on to the real HID DLL, while logging the data.☆22Oct 3, 2014Updated 11 years ago
- Sample x64dbg plugin to scan the stack during tracing.☆20Dec 19, 2016Updated 9 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆19Jul 15, 2021Updated 4 years ago
- Some eternal WIP stuff :)☆21Nov 18, 2025Updated 3 months ago
- MASS CVE-2021-41773☆29Nov 14, 2023Updated 2 years ago
- Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.☆25Mar 2, 2024Updated 2 years ago
- ASProtect reverse engineering & analysis WinDbg extension☆23Nov 16, 2020Updated 5 years ago
- Notes about the YouTube playlist: Red Team Operations with Cobalt Strike (2019)☆20Feb 16, 2021Updated 5 years ago
- AutoIt Analysis Library: Parser & Emulator For Malware Researchers☆21Apr 27, 2019Updated 6 years ago
- Recon 2015 Presentation from Alex Ionescu☆250Jan 27, 2016Updated 10 years ago
- Specialized tool to dump Position Independent Code.☆22Aug 4, 2020Updated 5 years ago
- Append a custom data payload to a digitally signed NSIS .exe installer☆24Jan 11, 2023Updated 3 years ago
- virtual usb bus enumerator source code☆23Jun 13, 2018Updated 7 years ago
- ☆49Nov 7, 2024Updated last year
- C# port of LogServiceCrash☆46Oct 7, 2020Updated 5 years ago
- ☆44Aug 16, 2018Updated 7 years ago