pwnlogs / d-timeLinks
This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.
☆35Updated 4 years ago
Alternatives and similar repositories for d-time
Users that are interested in d-time are comparing it to the libraries listed below
Sorting:
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆98Updated 4 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- ☆11Updated 2 years ago
- ☆46Updated 4 years ago
- ☆70Updated 2 years ago
- ☆28Updated 5 years ago
- PyKD DLLs for x86 and x64 platforms☆17Updated last year
- ☆12Updated 4 years ago
- A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers…☆69Updated 3 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- ☆25Updated last year
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆35Updated 4 years ago
- ☆31Updated 3 years ago
- ☆20Updated last month
- A few examples of how to trap virtual memory access on Windows.☆31Updated 6 months ago
- ☆40Updated 4 years ago
- IOCTL-Flooder is a verbose tool designed to help with Windows driver fuzzing by brute forcing IOCTLs on loaded drivers. GetLastError is u…☆10Updated 6 years ago
- clone of armadillo patched for windows☆47Updated 8 months ago
- ☆14Updated 3 years ago
- Clone running process with ZwCreateProcess☆57Updated 4 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆37Updated 6 years ago
- ☆12Updated 8 months ago
- A collection of shellcode hashes☆17Updated 6 years ago