rrbranco / blackhat2012Links
Blackhat 2012 Sample Codes
☆93Updated 8 years ago
Alternatives and similar repositories for blackhat2012
Users that are interested in blackhat2012 are comparing it to the libraries listed below
Sorting:
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- A library for intercepting native functions by hooking KiFastSystemCall☆73Updated 5 years ago
- TDL4 style rootkit to spoof read/write requests to master boot record☆131Updated 7 years ago
- KINS Banking Trojan☆61Updated 10 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- Driver Initial Reconnaissance Tool☆123Updated 5 years ago
- ☆80Updated 7 years ago
- DLL Injection Library & Tools☆72Updated 8 years ago
- Static unpacker for FinSpy VM☆101Updated 3 years ago
- Load a Windows Kernel Driver☆92Updated 8 years ago
- kernel exploitation helper class☆77Updated 8 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆111Updated last year
- ☆115Updated 8 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub☆79Updated 12 years ago
- Supporting Files on my analysis of the malware designated hdroot.☆59Updated 8 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆96Updated 4 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆71Updated 8 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆117Updated 6 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆38Updated 9 years ago
- Security Research and Development Framework☆106Updated 9 years ago
- ☆51Updated 8 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆120Updated 6 years ago
- Python scripts for reverse engineering.☆184Updated 4 years ago
- Collection Of Anti-Debugging Tricks☆99Updated 9 years ago
- ☆71Updated 11 years ago
- Rovnix Bootkit☆119Updated 10 years ago
- ☆91Updated 8 years ago
- A C polymorphic and metamorphic engine☆70Updated 6 years ago