nihilboy / anti
Automated Integration of anti-Reversing methods in PE executables
☆48Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for anti
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆53Updated 5 years ago
- An automatic tool for fixing dumped PE files☆41Updated 4 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆73Updated 13 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆102Updated 4 years ago
- Manual PE image mapper☆61Updated 11 years ago
- Resolve DOS MZ executable symbols at runtime☆93Updated 3 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆54Updated 6 years ago
- ☆63Updated 6 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆167Updated 6 years ago
- disable most common windowsx64 systems patchguard☆83Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆89Updated 4 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆75Updated 9 years ago
- Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement☆31Updated 10 years ago
- ☆66Updated 3 years ago
- Hooking SSDT with Avast Internet Security Hypervisor☆110Updated 5 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- x64 syscall caller in C++.☆84Updated 6 years ago
- Polymorphic Stub Creator☆30Updated 7 years ago
- based on https://github.com/secrary/Hooking-via-InstrumentationCallback☆67Updated 5 years ago
- core of pkn game hacking project. Including mainly for process management, memory management, and DLL injecttion. Also PE analysis, windo…☆64Updated 5 years ago
- fix vmprotect import function used unicorn-engine.☆91Updated last year
- POC of sysenter x64 LSTAR MSR hook☆38Updated 10 years ago
- Another method to anti ThreadHideFromDebugger☆34Updated 5 years ago
- Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler☆37Updated 4 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆33Updated 4 months ago
- PoC for detecting and dumping process hollowing code injection☆50Updated 6 years ago
- This is the first software system, which can detect a stealthy hypervisor and calculate several nested ones even under countermeasures.☆83Updated 9 years ago
- Anti-Anti-VM solution via Windows Driver☆54Updated 6 years ago
- ☆121Updated 4 years ago