nemesisqp / al-khaser
Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement
☆32Updated 10 years ago
Alternatives and similar repositories for al-khaser:
Users that are interested in al-khaser are comparing it to the libraries listed below
- Manual PE image mapper☆64Updated 11 years ago
- Capcom wrapper with safety in mind.☆79Updated 6 years ago
- x64 syscall caller in C++.☆88Updated 6 years ago
- Disable Driver Callbacks☆102Updated 7 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- Ghetto user mode emulation of Windows kernel drivers.☆134Updated 6 months ago
- A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.☆64Updated last year
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- Hiding x32/x64 Modules/DLLs using PEB☆62Updated 9 years ago
- Communication via callback☆73Updated 5 years ago
- Windows Manipulation Library (x64, User/Kernelmode)☆77Updated 6 years ago
- BetaShield Windows x86 Ring3 Anticheat v2☆38Updated 8 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆75Updated 14 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆71Updated 5 years ago
- A sample on how to inject a DLL from a kernel driver☆62Updated 8 years ago
- BattlEye x64 usermode injector☆65Updated 6 years ago
- reverse engineering of bedaisy.sys (battleyes kernel driver) - Aki2k/BEDaisy☆82Updated 4 years ago
- disable most common windowsx64 systems patchguard☆84Updated 6 years ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆55Updated 2 years ago
- Obfuscate calls to imports by patching in stubs☆67Updated 3 years ago
- A simple program to scan for open handles in a process.☆62Updated 8 years ago
- ☆68Updated 4 years ago
- Automated Integration of anti-Reversing methods in PE executables☆50Updated 6 years ago
- This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does m…☆34Updated 7 years ago
- Intercepting DeviceControl via WPP☆133Updated 5 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆54Updated 5 years ago
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- Recreation of GetProcAddress without external dependencies on Windows Libraries☆90Updated 9 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆65Updated 6 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆56Updated 6 years ago