killswitch-GUI / IsDebuggerPresent

Related projects: ⓘ

• zodiacon / AccessMask
  ☆18Updated 5 years ago
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆16Updated 5 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 7 years ago
• Darkabode / 0lib
  Zerokit shared code
  ☆16Updated 5 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆18Updated 8 years ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆25Updated 6 years ago
• HFaeiro / Remote-Admin-Tool
  Simple remote administration tool. Written in c++ and MASM.
  ☆18Updated 6 years ago
• KbaHaxor / Ammyy-v3
  Ammyy v3 Source Code leak , with ❤️ <3
  ☆36Updated 7 years ago
• pfussell / pivotal
  A MITM proxy server for reflective DLL injection through WinINet
  ☆15Updated 6 years ago
• conix-security / debug_inject
  Shellcode injection using debugging APIs
  ☆17Updated 10 years ago
• PELock / starter
  A small utility to run raw code chunks in the executable memory area.
  ☆14Updated 9 years ago
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆30Updated 5 years ago
• owodelta / coilgun
  ☆32Updated this week
• georgenicolaou / icarus
  The Exploitation Toolkit Icarus is a cross platform software exploitation library that assists in the development of proof of concept exp…
  ☆17Updated 11 years ago
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 6 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆20Updated 5 years ago
• n3k / misc_exploits_pocs
  Miscellaneous old Exploit code and PoCs
  ☆15Updated 4 years ago
• 0neb1n / CVE-2020-1349
  ☆11Updated 4 years ago
• repnz / windows-dll-hijacking
  ☆11Updated this week
• wes4m / unHooker
  Kernel (Ring0) - SSDT unhook driver
  ☆13Updated 6 years ago
• d35ha / DumpPE
  Dump mapped PE files from memory to the disk
  ☆17Updated 5 years ago
• odzhan / dewifi
  Decrypt Wireless Passwords On Windows
  ☆14Updated 4 years ago
• pstolarz / asprext
  ASProtect reverse engineering & analysis WinDbg extension
  ☆20Updated 3 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆15Updated 5 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 4 years ago
• NtRaiseHardError / NoREpls
  NoREpls - Application designed for the purposes of reverse engineering.
  ☆10Updated 6 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆23Updated 5 years ago
• blaquee / APCHook
  hooking KiUserApcDispatcher
  ☆22Updated 7 years ago
• hasherezade / challs
  My solutions for random crackmes and other challenges
  ☆11Updated 4 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆16Updated 3 months ago