mandiant / remote_lookupLinks
Resolves DLL API entrypoints for a process w/ remote query capabilities.
☆55Updated 7 years ago
Alternatives and similar repositories for remote_lookup
Users that are interested in remote_lookup are comparing it to the libraries listed below
Sorting:
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- Analysis PE file or Shellcode☆49Updated 8 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 7 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- Collection of my Python Scripts☆41Updated 4 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- PyCommand Scripts for Immunity Debugger☆36Updated 10 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- Some sample code from my Zero Nights 2017 presentation.☆61Updated 7 years ago
- Python script to inject and run shellcodes through TLS callbacks☆49Updated 9 years ago
- officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …☆16Updated 9 years ago
- ☆34Updated 7 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆32Updated 8 years ago
- Material from our CANAPE workshop☆32Updated 6 years ago
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago
- Exploit Reliability Testing System☆34Updated 10 years ago
- Mixing up CVE and MS like a pro☆25Updated 8 years ago
- ☆22Updated 7 years ago
- UAC 0Day all day!☆57Updated 7 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆50Updated 7 years ago
- Simple DDE object detector☆56Updated 7 years ago
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆35Updated 8 years ago
- ☆29Updated 8 years ago
- An offensive Powershell console☆30Updated 9 years ago
- ASERT shared scripts for reversing☆32Updated 7 years ago
- HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit☆25Updated 8 years ago
- API functions for Malware Research☆35Updated 5 years ago
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 10 years ago
- Talk given at DerbyCon and RuxCon 2016☆22Updated 8 years ago