mandiant / remote_lookup
Resolves DLL API entrypoints for a process w/ remote query capabilities.
☆55Updated 7 years ago
Related projects: ⓘ
- POC for IAT Parsing Payloads☆46Updated 7 years ago
- ☆33Updated this week
- ☆39Updated this week
- IDA Pro plugin that rename functions on load, based on functionality☆19Updated 6 years ago
- ☆34Updated this week
- ☆34Updated this week
- This script is used for extracting DDE in docx and xlsx☆12Updated 6 years ago
- ☆22Updated 7 years ago
- API functions for Malware Research☆35Updated 5 years ago
- PyCommand Scripts for Immunity Debugger☆36Updated 10 years ago
- ☆44Updated this week
- ☆52Updated this week
- Various snippets created during malware analysis☆22Updated 6 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆34Updated 7 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆14Updated 7 years ago
- Test suite for bypassing Malware sandboxes.☆38Updated 9 years ago
- ☆26Updated this week
- ☆29Updated this week
- Some sample code from my Zero Nights 2017 presentation.☆62Updated 6 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆52Updated 6 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆49Updated 6 years ago
- ☆35Updated this week
- Analysis PE file or Shellcode☆48Updated 8 years ago
- ☆42Updated this week
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 9 years ago
- ☆57Updated this week
- ☆15Updated 3 years ago