hidd3ncod3s / runpedmpLinks
RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the API's i hook and to dump the memory while it is using RunPE/PH techniques.
☆10Updated 10 years ago
Alternatives and similar repositories for runpedmp
Users that are interested in runpedmp are comparing it to the libraries listed below
Sorting:
- Windows registry files interactive viewer☆9Updated 8 years ago
- does reflective dll injection☆8Updated 11 years ago
- Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…☆13Updated 12 years ago
- ☆10Updated 11 years ago
- wow64 syscall filter☆13Updated 10 years ago
- ☆12Updated 10 years ago
- Framework complet d'analyse de malware☆12Updated 9 years ago
- Shellcode tracer☆15Updated 9 years ago
- Malware analyses and helpful scripts☆29Updated 3 years ago
- Common Malware Techniques☆13Updated 2 years ago
- ☆12Updated 7 years ago
- ☆16Updated 7 years ago
- ☆13Updated 7 years ago
- Cross-referencing network communication for detecting Advanced Persistent Threat (APT) malware☆6Updated 9 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- Yet Another Repetitive Rootkit☆9Updated 12 years ago
- Remote execution tool☆14Updated 11 years ago
- ☆28Updated 8 years ago
- Capture Webcam Reflective Dll☆8Updated 9 years ago
- just a basic rootkit for learning how to playing sys_call_table☆14Updated 8 years ago
- 🐧 A simple kernel-level rootkit☆20Updated 9 years ago
- IDA WhatAPIs PlugIn☆7Updated 9 years ago
- simple rootkit for computer security class☆14Updated 12 years ago
- Agent installed on node to launch IDA,Bindiff,... and send results to the server ( AutoDiffWeb )☆10Updated 9 years ago
- Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook t…☆8Updated 8 years ago
- it's a simple LKM rootkit.☆12Updated 8 years ago
- Flash Exploit Detector☆7Updated 9 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 7 years ago
- This repository is a clne of the new cuckoo monitor where I added some stuff to get the calling address for every hooked API☆8Updated 9 years ago