maldevel / PEdumper
Dump Windows PE file information in C
☆22Updated 9 years ago
Related projects: ⓘ
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆36Updated 7 years ago
- Sample libraries to be used with IAT Patcher☆33Updated last year
- Simple tool for unpacking packed/protected malware executables.☆32Updated 12 years ago
- Anti-AV compilation☆42Updated 10 years ago
- windows create process with a dll load first time via LdrHook☆30Updated 7 years ago
- OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.☆52Updated 12 years ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆80Updated 13 years ago
- Helper utility for debugging windows PE/PE+ loader.☆49Updated 9 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- Sample showing the use of CoGetInterceptor☆21Updated 3 years ago
- ☆48Updated this week
- DLL Injection Library & Tools☆71Updated 8 years ago
- Decrement Windows Kernel for fun and profit☆38Updated 6 years ago
- Another dll injection tool.☆28Updated 9 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 8 years ago
- ☆50Updated 8 years ago
- ☆33Updated 6 years ago
- Malware monitor template based on MinHook☆16Updated 9 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆91Updated 5 years ago
- Windows anti-rootkit library☆37Updated 9 years ago
- A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory☆32Updated 10 years ago
- OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process.☆53Updated 12 years ago
- ☆37Updated this week
- ☆81Updated this week
- Analyze and attack windows applications using dll hijacking vulnerabilities☆54Updated 4 years ago
- PoC for detecting and dumping process hollowing code injection☆50Updated 5 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆54Updated 5 years ago
- ☆28Updated 7 years ago