Extracted lua script from Defender mpavbase.vdm and mpasbase.vdm
☆16Jul 5, 2024Updated last year
Alternatives and similar repositories for SIGNATURE_TYPE_LUASTANDALONE
Users that are interested in SIGNATURE_TYPE_LUASTANDALONE are comparing it to the libraries listed below
Sorting:
- A Windows C++ OLE/COM Object explorer written in WTL.☆16Feb 28, 2025Updated last year
- Windows user mini-dump helper library to extract data from it.☆13May 17, 2025Updated 9 months ago
- allowing um r/w through km from um ioctl ™☆11Jan 2, 2022Updated 4 years ago
- A simple parser(library) which extracts shimcache data from windows.☆15May 20, 2019Updated 6 years ago
- ☆22Jan 15, 2025Updated last year
- The C++ open source remote keylogger, hack windows and control mouse and keyboard remotely and bypass any antivirus☆19Apr 8, 2022Updated 3 years ago
- A utility that can be used to launch an executable with a DLL injected☆19Nov 20, 2023Updated 2 years ago
- A Proof-of-Concept implementation of Reflective DLL Injection (RDI) specifically for Windows on ARM64. Demonstrates PEB access via the x1…☆34May 30, 2025Updated 9 months ago
- ☆23Jul 24, 2023Updated 2 years ago
- defender_database☆24Oct 31, 2023Updated 2 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆144Updated this week
- Kill Everything AV/EDR☆27Nov 18, 2024Updated last year
- A lightweight Windows Prefetch file parser to extract programs' execution history☆67Jan 12, 2026Updated last month
- ☆28Dec 16, 2023Updated 2 years ago
- Red teaming cheatsheet for Windows Active Directory environments, featuring a meticulously curated cheatsheet that transcends traditional…☆12Feb 5, 2025Updated last year
- ☆26Sep 29, 2022Updated 3 years ago
- China ID card and other information generation library(中国大陆身份证号等信息生成库)☆29Jan 20, 2026Updated last month
- Indirect-Shellcode-Executor expoits the miss-configuration/vulnerability present on the API Windows method ReadProcessMemory discovered b…☆83Nov 15, 2025Updated 3 months ago
- sigreturn-oriented programming (SROP) based sleep obfuscation poc for Linux☆66Dec 15, 2025Updated 2 months ago
- Call NtCreateUserProcess directly as normal.☆77May 17, 2022Updated 3 years ago
- ☆51Jun 28, 2025Updated 8 months ago
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated 8 months ago
- The lightweight library for Hyper-V guest interfaces.☆46Feb 16, 2026Updated 2 weeks ago
- Serialize/deserialize Range in HTML.☆15Jan 30, 2026Updated last month
- EDRcoin source☆10Mar 23, 2016Updated 9 years ago
- Based on physmeme☆74Apr 30, 2022Updated 3 years ago
- Arsenal of modules to beacon postex☆94Updated this week
- A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…☆88Sep 16, 2025Updated 5 months ago
- ☆42Feb 18, 2025Updated last year
- WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…☆76Sep 10, 2025Updated 5 months ago
- This is a mirror of the main Bitbucket repository. Issue tracking is done on Bitbucket☆12Jun 29, 2022Updated 3 years ago
- ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software agai…☆15Jan 29, 2021Updated 5 years ago
- ☆12Feb 8, 2021Updated 5 years ago
- This is just a personal SnapTap Project for CS2 I made in python to get past the recent VAC 3.0 SnapTap & SOCD Detections☆16Sep 6, 2024Updated last year
- Active Directory share enumeration tool☆12Apr 28, 2025Updated 10 months ago
- Ask ChatGPT directly from the Chrome address bar (omnibox)☆10Mar 23, 2023Updated 2 years ago
- Titanfall 2 mod that has just enough of Northstar.Client to allow client-side mods on official servers.☆12Nov 27, 2024Updated last year
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 3 months ago