nemesisqp / al-khaser
Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement
☆31Updated 10 years ago
Related projects ⓘ
Alternatives and complementary repositories for al-khaser
- Manual PE image mapper☆61Updated 11 years ago
- x64 syscall caller in C++.☆84Updated 6 years ago
- Disable Driver Callbacks☆98Updated 7 years ago
- A simple anti debug program (with kernel mode callbacks)☆42Updated 4 years ago
- BattlEye x64 usermode injector☆62Updated 5 years ago
- This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does m…☆32Updated 6 years ago
- Elevate a process to be a protected process☆142Updated 5 years ago
- Hooking SSDT with Avast Internet Security Hypervisor☆110Updated 5 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- Automated Integration of anti-Reversing methods in PE executables☆48Updated 6 years ago
- usermode standalone kernel interface☆110Updated 6 years ago
- Capcom wrapper with safety in mind.☆79Updated 6 years ago
- A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.☆63Updated last year
- A quick-and-dirty anti-hook library proof of concept.☆101Updated 6 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆72Updated 13 years ago
- ☆159Updated 7 years ago
- disable most common windowsx64 systems patchguard☆83Updated 5 years ago
- A simple program to scan for open handles in a process.☆61Updated 7 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆59Updated 4 years ago
- Intercepting DeviceControl via WPP☆127Updated 4 years ago
- Hiding x32/x64 Modules/DLLs using PEB☆64Updated 9 years ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆54Updated 2 years ago
- Enable SEH support for manual mapped x86-32bit PEs☆65Updated 5 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- A sample on how to inject a DLL from a kernel driver☆61Updated 8 years ago
- A simple library which provides a way to read and write the memory of other processes☆50Updated 6 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆83Updated last year
- Dump system call codes, names, and offsets from Ntdll.dll☆70Updated last year