mgeeky / PEInfo
Another Portable Executable files analysing stuff
☆20Updated 13 years ago
Alternatives and similar repositories for PEInfo:
Users that are interested in PEInfo are comparing it to the libraries listed below
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆16Updated 6 years ago
- A tool for leveraging elevated acess over a computer to boot the computer into Windows Safe Mode, alter settings, and then boot back into…☆15Updated 3 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- API hashing written in C to load APIs indirectly using CRC32 hashing☆14Updated 4 years ago
- Just another casual shellcode native loader☆24Updated 2 years ago
- really ?☆12Updated 10 months ago
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆13Updated last week
- A simple PE loader.☆25Updated 2 years ago
- A simple injector that uses LoadLibraryA☆16Updated 4 years ago
- Remote PE reflective injection with a simple reflective loader☆30Updated 5 years ago
- PoC code from blog☆16Updated 4 years ago
- ☆46Updated 3 years ago
- ☆31Updated 4 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 4 years ago
- An example of COM hijacking using a proxy DLL.☆25Updated 3 years ago
- Remove API hooks from a Beacon process.☆13Updated 3 years ago
- ☆24Updated 3 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆38Updated 4 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago
- ☆26Updated 3 months ago
- ☆11Updated 5 years ago
- ☆15Updated last year
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- ☆20Updated 3 years ago