malice-plugins / windows-defenderLinks
Malice Windows Defender AntiVirus Plugin
☆39Updated 2 years ago
Alternatives and similar repositories for windows-defender
Users that are interested in windows-defender are comparing it to the libraries listed below
Sorting:
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆99Updated 7 years ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆33Updated 5 years ago
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆83Updated 2 years ago
- A tool for scanning registery key permissions. Find where non-admins can create symbolic links.☆46Updated 5 years ago
- ☆53Updated 6 years ago
- Simple DLL to test various injection methods.☆51Updated 4 years ago
- ☆62Updated 5 years ago
- ☆92Updated 4 years ago
- Rekall Memory Forensic Framework☆32Updated 6 years ago
- A collection of tools to enumerate and analyse Windows DACLs☆109Updated 10 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- A Portable Executable parser for Golang☆47Updated 8 months ago
- Proof of Concept code for CVE-2020-0728☆46Updated 5 years ago
- Experiments on the Windows Internals☆30Updated 5 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆93Updated 6 years ago
- Windows Console Monitoring☆100Updated 7 years ago
- ☆33Updated 10 years ago
- Some simple process injection techniques targeting the Windows platform☆31Updated 5 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆95Updated 6 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- a program to detect reflective dll injection on a live machine☆74Updated 9 years ago
- 2 ways of Password Filter DLL to record the plaintext password☆64Updated 4 years ago
- A collection of shellcode hashes☆17Updated 7 years ago
- ssdeep cluster analysis for malware files☆31Updated 5 years ago
- PE file mapping and manipulation package.☆36Updated 3 years ago
- ☆45Updated 7 years ago
- ☆45Updated 7 years ago
- A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.☆30Updated 12 years ago
- CAPE monitor DLLs☆41Updated 5 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆138Updated 8 years ago