ohjeongwook / ShellCodeEmulatorLinks
Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
☆123Updated 5 years ago
Alternatives and similar repositories for ShellCodeEmulator
Users that are interested in ShellCodeEmulator are comparing it to the libraries listed below
Sorting:
- Parsers for custom malware formats ("Funky malware formats")☆97Updated 3 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Flare-On solutions☆37Updated 5 years ago
- ☆50Updated 5 years ago
- Extract OLEv1 objects from RTF files by instrumenting Word☆51Updated 5 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆92Updated 6 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- FLARE Kernel Shellcode Loader☆179Updated 6 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 8 years ago
- ☆115Updated 9 years ago
- Simple 32/64-bit PEs loader.☆138Updated 6 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- ☆34Updated 4 years ago
- CAPE monitor DLLs☆41Updated 5 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆50Updated 5 years ago
- A session-0 capable dll injection utility☆76Updated 7 years ago
- Rekall Memory Forensic Framework☆33Updated 6 years ago
- Public repository for HEVD exploits☆20Updated 7 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- ☆28Updated 5 years ago
- Hansel - a simple but flexible search for IDA☆26Updated 6 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆85Updated 3 years ago
- Static unpacker for FinSpy VM☆102Updated 4 years ago
- Simple library to spray the Windows Kernel Pool☆110Updated 5 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆118Updated 7 years ago
- The Minimalistic x86/x64 API Hooking Library for Windows☆32Updated 7 years ago
- pyGoRE - Python library for analyzing Go binaries☆65Updated 3 years ago
- Load a Windows Kernel Driver☆94Updated 8 years ago