psaneme / Kung-Fu-Malware

Related projects: ⓘ

• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 10 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆36Updated 7 years ago
• deroko / activationcontexthook
  ☆33Updated 6 years ago
• Prevenity / malware_monitor
  Malware monitor template based on MinHook
  ☆16Updated 9 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆43Updated 7 years ago
• hidd3ncod3s / runpedmp
  RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …
  ☆10Updated 9 years ago
• Microwave89 / injector
  Code Injector Using Code Caves
  ☆14Updated 9 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆21Updated 7 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆18Updated 8 years ago
• int0 / ltmdm64_poc
  ☆28Updated 7 years ago
• owerosu / packerPE32
  Simple PE packer with RtlCompressBuffer
  ☆21Updated 9 years ago
• d35ha / xKeLogger
  Kernel mode windows NT API logger
  ☆21Updated 5 years ago
• coldshell / IDA-appcall
  ☆13Updated 7 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆36Updated 10 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆25Updated 7 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆17Updated 6 years ago
• tandasat / CVE-2014-0816
  CVE-2014-0816
  ☆24Updated 7 years ago
• ScorchSecurity / Toast
  User-mode hook bypassing method
  ☆32Updated 8 years ago
• eLoopWoo / kernel-drivers-windows
  Modify data structures in the Windows kernel, hiding processes by PID
  ☆15Updated 6 years ago
• Cn33liz / HSEVD-VariousExploits
  ☆15Updated this week
• dgros / Malware_Analyzer
  Framework complet d'analyse de malware
  ☆12Updated 8 years ago
• fdiskyou / InsideWindowsDebugging
  ☆17Updated this week
• tekwizz123 / HEVD-Exploit-Solutions
  Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…
  ☆21Updated 7 years ago
• dzzie / scdbg_unicorn
  ☆20Updated this week
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• ajkhoury / Dude-Loader
  Class implementation of PowerLoader injection technique
  ☆29Updated 7 years ago
• 86hh / MAGIK.A
  ☆11Updated this week
• TheEnergyStory / malware_analysis
  Malware analyses and helpful scripts
  ☆29Updated 2 years ago