mgeeky / PE-libraryLinks
Lightweight Portable Executable parsing library and a demo peParser application.
☆80Updated 2 years ago
Alternatives and similar repositories for PE-library
Users that are interested in PE-library are comparing it to the libraries listed below
Sorting:
- Library for using direct system calls☆35Updated 5 months ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- A driver to intercept low level windows events☆62Updated 5 years ago
- Static library and headers for linking your software with ntdll.dll☆32Updated 5 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆29Updated 4 years ago
- A ready-made template for a project based on libpeconv.☆49Updated 4 months ago
- c++ implementation of windows heavens gate☆68Updated 4 years ago
- A packed & protected Module Loader and more, for 64-bit Windows☆29Updated 4 years ago
- Position-idependent Windows DLL loader based on ReflectiveDLL project.☆97Updated 6 years ago
- Code Injection technique written in cpp language☆32Updated 7 years ago
- Add an empty section to a PE file☆52Updated 7 years ago
- Yet another Windows DLL injector.☆39Updated 3 years ago
- A simple tool for detecting memory modifications to Windows API.☆22Updated 6 months ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆57Updated 5 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆76Updated 6 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆96Updated 6 years ago
- Record & prevent file deletion in kernel mode☆44Updated 4 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Updated 5 years ago
- Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler☆41Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- A simple rootkit to hide a process☆46Updated 11 years ago
- Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post☆64Updated 10 months ago
- C++ library for low-level Windows development☆75Updated last year
- ☆26Updated 7 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆72Updated last year
- PoC for hiding PE exports☆67Updated 4 years ago
- Miscellaneous Code and Docs☆81Updated 2 weeks ago
- exploit termdd.sys(support kb4499175)☆59Updated 5 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago