imperva / frida-jit-unpackerLinks
The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.
☆63Updated last year
Alternatives and similar repositories for frida-jit-unpacker
Users that are interested in frida-jit-unpacker are comparing it to the libraries listed below
Sorting:
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆45Updated 11 months ago
- Windows AppLocker Driver (appid.sys) LPE☆60Updated 10 months ago
- ☆46Updated 2 months ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆50Updated last year
- Analysis of the vulnerability☆51Updated last year
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated last year
- Proof-of-Concept for CVE-2024-26218☆51Updated last year
- HEVD Exploit: ArbitraryWrite on Windows 10 22H2 - Bypassing KVA Shadow and SMEP via PML4 Entry Manipulation☆28Updated 10 months ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆74Updated 5 months ago
- A journal for $6,000 Riot Vanguard bounty.☆63Updated last year
- CVE-2024-30090 - LPE PoC☆107Updated 7 months ago
- Report and exploit of CVE-2024-21305.☆34Updated last year
- Report and exploit of CVE-2023-36427☆90Updated last year
- Rule Engine for Dynamic Malware Analysis and Research☆23Updated last month
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 10 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆76Updated last month
- call gates as stable comunication channel for NT x86 and Linux x86_64☆31Updated last year
- ☆25Updated 7 months ago
- ☆55Updated last month
- Ghosting-AMSI☆17Updated last month
- kernel-mode DLL Injector☆82Updated last month
- Aplos an extremely simple fuzzer for Windows binaries.☆69Updated 3 months ago
- Proof-of-Concept for CVE-2024-21345☆74Updated last year
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆52Updated last month
- ☆31Updated last year
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆65Updated 2 years ago
- LPE exploit for CVE-2023-36802☆22Updated last year
- Work, timer, and wait callback example using solely Native Windows APIs.☆89Updated last year
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆127Updated last year
- This repo contains EXPs about Vulnerable Windows Driver☆45Updated last year