pikulet / anti-debugging

Related projects ⓘ

Alternatives and complementary repositories for anti-debugging

• d35ha / xLogger
  Simple windows API logger
  ☆98Updated 5 years ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆32Updated last year
• omerk2511 / NotifyRoutinesResearch
  A research project about Windows notify routines.
  ☆35Updated 4 years ago
• t3ssellate / unmapper
  An automatic tool for fixing dumped PE files
  ☆41Updated 4 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 2 years ago
• govcert-ch / ConfuserEx_IDAPython
  IDA Python deobfuscation script for ConfuserEx binaries
  ☆35Updated 2 years ago
• VinCSS-Public-Projects / VinCSS-RE-Tools-Ultilities
  VinCSS Reverse Engineering, Malware Analysing Tools & Ultilities
  ☆26Updated 2 years ago
• CheckPointSW / Anti-Debug-DB
  Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…
  ☆49Updated last year
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆31Updated last year
• ioncodes / rw
  allowing um r/w through km from um ioctl ™
  ☆12Updated 2 years ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆52Updated 4 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆73Updated 13 years ago
• archercreat / api-tracer
  api-tracer is a tiny (useless) tracer
  ☆13Updated last year
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆38Updated 2 years ago
• hfiref0x / Misc
  Miscellaneous Code and Docs
  ☆77Updated 11 months ago
• hasherezade / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆9Updated last year
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆74Updated 4 years ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆106Updated last year
• tandasat / CVE-2022-25949
  A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
  ☆36Updated 2 years ago
• malware-unicorn / pteroioctl-hook
  A driver to implement IOCTL hooking
  ☆23Updated 2 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆84Updated 2 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆93Updated 3 years ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆30Updated 7 months ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆57Updated 2 months ago
• mrexodia / MiniDumpPlugin
  Simple x64dbg plugin to save a full memory dump
  ☆49Updated 2 years ago
• uf0o / PyKD
  PyKD DLLs for x86 and x64 platforms
  ☆14Updated last year