nihilboy / anti
Automated Integration of anti-Reversing methods in PE executables
☆48Updated 6 years ago
Alternatives and similar repositories for anti:
Users that are interested in anti are comparing it to the libraries listed below
- An automatic tool for fixing dumped PE files☆41Updated 4 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆75Updated 13 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆76Updated 9 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆53Updated 5 years ago
- Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement☆31Updated 10 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆56Updated 6 years ago
- Resolve DOS MZ executable symbols at runtime☆93Updated 3 years ago
- x64 syscall caller in C++.☆85Updated 6 years ago
- ☆67Updated 4 years ago
- fix vmprotect import function used unicorn-engine.☆92Updated last year
- ☆123Updated 4 years ago
- Polymorphic Stub Creator☆30Updated 7 years ago
- disable most common windowsx64 systems patchguard☆84Updated 6 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆172Updated 7 years ago
- This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does m…☆34Updated 7 years ago
- Obfuscate calls to imports by patching in stubs☆65Updated 3 years ago
- LSASS INJECTOR☆34Updated 6 years ago
- Manual PE image mapper☆62Updated 11 years ago
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆47Updated 10 years ago
- Standalone program to download PDB Symbol files for debugging without WDK☆75Updated 5 years ago
- Translates WinDbg "dt" structure dump to a C structure☆127Updated 8 years ago
- C++☆80Updated 8 years ago
- Скрытие строки от отладчиков и декомпиляторов☆49Updated 5 years ago
- Hooking SSDT with Avast Internet Security Hypervisor☆112Updated 5 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆50Updated 4 years ago
- A quick-and-dirty anti-hook library proof of concept.☆102Updated 6 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.☆63Updated last year