☆31Feb 28, 2025Updated last year
Alternatives and similar repositories for RansomFS
Users that are interested in RansomFS are comparing it to the libraries listed below
Sorting:
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 7 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.☆61Feb 21, 2026Updated last month
- Mentally ill EtwTi parser☆69Jan 11, 2026Updated 2 months ago
- A New Exploitation Technique for Visual Studio Projects☆11Nov 5, 2023Updated 2 years ago
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Jun 18, 2022Updated 3 years ago
- RE for champions☆15Mar 10, 2026Updated last week
- A lexer and parser for Sleep☆20Feb 20, 2026Updated last month
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 11 months ago
- Tracks cross references and allows fast viewing of pseudocode between references☆13Mar 10, 2025Updated last year
- Port of zentool to Windows☆27Mar 7, 2025Updated last year
- IR drill plateform☆23Jul 29, 2025Updated 7 months ago
- Rule Engine for Dynamic Malware Analysis and Research☆25Apr 16, 2025Updated 11 months ago
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- A Payload Analysis Framework☆116Oct 9, 2025Updated 5 months ago
- ☆164Jun 12, 2025Updated 9 months ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆139Oct 20, 2025Updated 5 months ago
- Reports on Driver, LSASS and other security services mitigations☆34Aug 18, 2025Updated 7 months ago
- ☆156Apr 23, 2025Updated 10 months ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- ANY.RUN sandbox detection collection☆22Aug 21, 2024Updated last year
- Header-only C++ library for producing PE files.☆36Jun 17, 2023Updated 2 years ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆145Updated this week
- ☆15May 3, 2024Updated last year
- An example reference design for a proposed BOF PE☆204Jan 23, 2026Updated last month
- ☆42Jan 7, 2025Updated last year
- WinDbg plugin to trace module transitions from a debugged driver.☆47Dec 22, 2025Updated 3 months ago
- ☆25Dec 3, 2024Updated last year
- Indicators of compromise☆17Jan 29, 2026Updated last month
- List the ETW provider(s) in the registration table of a process.☆80Sep 20, 2023Updated 2 years ago
- ☆54Mar 26, 2025Updated 11 months ago
- A work-in-progress C++20/23 header-only maths library for game development, embedded, kernel and general-purpose that works in constant c…☆25Dec 6, 2022Updated 3 years ago
- A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.☆67Feb 11, 2025Updated last year
- Linker for Beacon Object Files☆170Feb 22, 2026Updated 3 weeks ago
- Binary rewriter for 64-bit PE files.☆102Feb 5, 2024Updated 2 years ago
- Read Windows message table entries.☆11Feb 5, 2023Updated 3 years ago
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Mar 15, 2025Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆236Jan 24, 2025Updated last year