nccgroup / WindowsPatchDetectorLinks
Experimental Windows .text section Patch Detector
☆22Updated 10 years ago
Alternatives and similar repositories for WindowsPatchDetector
Users that are interested in WindowsPatchDetector are comparing it to the libraries listed below
Sorting:
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Updated 7 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 8 years ago
- ☆16Updated 8 years ago
- ☆34Updated 8 years ago
- Pack required dlls into a single binary that has no imports and makes direct syscalls on Windows☆28Updated 8 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- ☆53Updated 8 years ago
- Public repository for HEVD exploits☆20Updated 7 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- ☆45Updated 7 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Updated 9 years ago
- Malware analyses and helpful scripts☆29Updated 3 years ago
- A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…☆18Updated 7 years ago
- Antivirus Emulator Fingerprints☆29Updated 6 years ago
- public bugs/proof of concepts☆50Updated 4 years ago
- ☆50Updated 5 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- Experimental: Windows .text section compare - disk versus memory☆15Updated 10 years ago
- ☆23Updated 4 years ago
- ☆31Updated 5 years ago
- Code Injector Using Code Caves☆15Updated 10 years ago
- Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation☆25Updated 7 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 4 years ago
- My articles for Paged Out! #2☆17Updated 5 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆39Updated 8 years ago
- https://blog.xpnsec.com/windows-warbird-privesc/☆31Updated 7 years ago
- Sample libraries to be used with IAT Patcher☆36Updated 3 years ago
- My conference presentations and publications☆26Updated 3 years ago