howmp / COMFinderLinks
IDA plugin for COM
☆48Updated 2 years ago
Alternatives and similar repositories for COMFinder
Users that are interested in COMFinder are comparing it to the libraries listed below
Sorting:
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆51Updated 4 years ago
- 基于UC的启发式杀毒引擎[还没做完]☆34Updated 4 years ago
- ☆11Updated 3 years ago
- 参考taviso的代码逆向一下mpengine.dll☆20Updated 3 years ago
- Windows CVE主防(HIPS/HIDS)☆55Updated 4 years ago
- 一个早期的抗启发式查杀的WIN32免杀壳☆44Updated 12 years ago
- 绕过卡巴斯基主动防御,加载驱动,unhook所有ssdt hook及shadow ssdt hook☆37Updated 9 years ago
- 关于intel和amd指令行为不一样这件事☆61Updated 3 years ago
- POC For CVE-2022-24483☆14Updated 3 years ago
- ida提取特征码脚本☆56Updated 5 years ago
- May the POC be with you☆60Updated last week
- ☆60Updated 3 years ago
- 从admin冲到TrustedInstaller☆17Updated 2 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆31Updated 4 years ago
- ☆16Updated 2 years ago
- exploit termdd.sys(support kb4499175)☆59Updated 6 years ago
- ☆24Updated 2 years ago
- A simple parser(library) which extracts shimcache data from windows.☆15Updated 6 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- From 32-bit process to 64-bit process☆70Updated 4 years ago
- ☆26Updated 6 years ago
- 绕过火绒剑检测的一个简单的inlinehook方法☆12Updated 6 years ago
- Windows Sandbox Framework☆39Updated 3 years ago
- Code for diskless loading of ELF Shared Library using Reflective DLL Injection☆53Updated 9 years ago
- a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…☆18Updated 2 years ago
- ☆33Updated 3 years ago
- Rapid generation ShellCode☆60Updated 7 years ago
- Call NtCreateUserProcess directly as normal.☆72Updated 3 years ago
- 大表哥的Syscall-Monitor☆34Updated 6 years ago
- Windows下的简易进程DLL注入工具 (A simple process DLL injection tool under the Windows)☆27Updated 3 years ago