r41p41 / BotKillerLinks
find and kill injectedThreads from memory
☆12Updated 9 years ago
Alternatives and similar repositories for BotKiller
Users that are interested in BotKiller are comparing it to the libraries listed below
Sorting:
- User-mode part of Zerokit platform☆22Updated 6 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- Anti-AV compilation☆44Updated 11 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 8 years ago
- Class implementation of PowerLoader injection technique☆32Updated 8 years ago
- Common Malware Techniques☆14Updated 2 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- A simple native code virtualizer for 32-bit Windows PE☆15Updated 9 years ago
- Malware monitor template based on MinHook☆16Updated 10 years ago
- Scanning and identifying XOR encrypted PE files in PE resources☆28Updated 11 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆39Updated 8 years ago
- Analysis and Modification Tool for Executables☆17Updated 6 years ago
- Windows hard shutdown shellcode. Don't need administrator rights.☆13Updated 9 years ago
- User-mode hook bypassing method☆33Updated 8 years ago
- windows create process with a dll load first time via LdrHook☆30Updated 8 years ago
- Some interesting code☆18Updated 10 years ago
- A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory☆33Updated 11 years ago
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆17Updated 9 years ago
- Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.☆17Updated 12 years ago
- Reflective DLL Injection style process infector☆20Updated 7 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- CVE-2014-0816☆25Updated 8 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆15Updated 7 years ago
- ☆33Updated 6 years ago
- ☆12Updated 10 years ago
- OpenHIPS prevents exploitation of Windows systems☆35Updated 12 years ago
- Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )☆28Updated 9 years ago
- wow64 syscall filter☆13Updated 10 years ago
- ☆12Updated 8 years ago