mike1k / perses
X86 Mutation Engine with Portable Executable compatibility.
☆481Updated 2 years ago
Alternatives and similar repositories for perses:
Users that are interested in perses are comparing it to the libraries listed below
- Native code virtualizer for x64 binaries☆471Updated 3 months ago
- System call hook for Windows 10 20H1☆484Updated 3 years ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆581Updated last month
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,160Updated 11 months ago
- Inline syscalls made easy for windows on clang☆694Updated 9 months ago
- A x64 Windows Rootkit using SSDT or Hypervisor hook☆534Updated 2 months ago
- Manual mapping without creating any threads, with rw only access☆734Updated 5 years ago
- Anti-debugging techniques on a (bad looking) Win32 application.☆239Updated 11 months ago
- DLL scatter manual mapper☆736Updated 3 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆856Updated 5 years ago
- VMProtect 2.x-3.x x64 Import Deobfuscator☆291Updated last year
- UEFI bootkit for driver manual mapping☆534Updated last year
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆276Updated last year
- This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…☆592Updated 6 years ago
- A library to develop kernel level Windows payloads for post HVCI era☆396Updated 3 years ago
- Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+☆732Updated 3 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆332Updated 2 years ago
- Reversing EasyAntiCheat.☆539Updated 5 years ago
- A bunch of Windows anti-debugging tricks for x86 and x64.☆780Updated 3 years ago
- A VMP to VTIL lifter.☆432Updated 3 years ago
- Debugger Anti-Detection Benchmark☆311Updated last year
- Handle elevation DKOM against ObRegisterCallbacks☆293Updated 6 years ago
- COFF and Portable Executable format described using standard C++ with no dependencies.☆278Updated 3 weeks ago
- protector & obfuscator & code virtualizer☆508Updated last week
- Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module☆413Updated 6 years ago
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆827Updated 10 months ago
- Anti-cheat library for Windows C++☆436Updated 2 years ago
- Analyze patches in a process☆250Updated 3 years ago
- x86 PE Mutator☆216Updated 2 years ago
- C++17 PE manualmapper☆333Updated 3 years ago