libyal / libvsmbr

Related projects: ⓘ

• ambray / Ntfs
  Various libraries focused on examining/parsing NTFS-specific structures
  ☆16Updated 8 years ago
• dzzie / sclog
  ☆24Updated this week
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 7 years ago
• conix-security / debug_inject
  Shellcode injection using debugging APIs
  ☆17Updated 10 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 10 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆16Updated 2 months ago
• libyal / libmsiecf
  Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files
  ☆16Updated last month
• zodiacon / InterceptionDemo
  Sample showing the use of CoGetInterceptor
  ☆21Updated 3 years ago
• conix-security / CRET
  Remote execution tool
  ☆13Updated 10 years ago
• apriorit / Simple-Antirootkit-SST-Unhooker
  This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
  ☆33Updated 7 years ago
• long123king / TokenInsight
  An application for obtaining, dumping and modifying token from user land.
  ☆27Updated 8 years ago
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆27Updated 10 years ago
• maldevel / WinRC4
  RC4 Encryption with CryptoAPI and C
  ☆15Updated 8 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆16Updated 9 years ago
• maldevel / PEdumper
  Dump Windows PE file information in C
  ☆22Updated 9 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆33Updated 11 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 7 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• libyal / libsigscan
  Library for binary signature scanning.
  ☆27Updated last month
• ufrisk / shellcode64
  A minimal tool to extract shellcode from 64-bit PE binaries.
  ☆48Updated 3 years ago
• georgenicolaou / icarus
  The Exploitation Toolkit Icarus is a cross platform software exploitation library that assists in the development of proof of concept exp…
  ☆17Updated 11 years ago
• liveforensics / Memory-Explorer
  ☆14Updated this week
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 6 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆29Updated 5 years ago
• killswitch-GUI / IsDebuggerPresent
  Debugger checks in 3 ways
  ☆19Updated 6 years ago
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆16Updated 5 years ago
• n3k / misc_exploits_pocs
  Miscellaneous old Exploit code and PoCs
  ☆15Updated 4 years ago
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• dgros / Malware_Analyzer
  Framework complet d'analyse de malware
  ☆12Updated 8 years ago
• nettitude / InlineFunctionHooking
  Windows Inline function hooking library targeted at MSVC
  ☆26Updated 8 years ago