scmanjarrez / pymetangine
A python metamorphic engine for PE/PE+ files.
☆15Updated last year
Related projects: ⓘ
- Kernel Shellcode to add all privileges in token☆13Updated 7 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆21Updated 7 years ago
- A wrapper for capstone for bearparser☆13Updated last year
- Static analysis tools for x86 assembly☆13Updated 7 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆18Updated 8 years ago
- Plugin for x64dbg to break on unresolved APIs.☆11Updated 6 years ago
- Kernel-mode file scanner☆17Updated 6 years ago
- ☆11Updated this week
- hooking KiUserApcDispatcher☆22Updated 7 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆31Updated 6 years ago
- ☆16Updated 4 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆18Updated 10 years ago
- ☆13Updated 7 years ago
- User-mode hook bypassing method☆32Updated 8 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- A WinDbg theme☆10Updated 2 years ago
- simple plugin for lastest olly versions to display the callstack☆15Updated 11 years ago
- ☆14Updated 7 years ago
- a binary x86win32 code obfuscator using virtual machine☆32Updated 7 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆25Updated 5 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 2 years ago
- PIN Tool for monitoring calls and writes from obfuscated code.☆26Updated 5 years ago
- PE Infector/Cryptor source code☆15Updated 7 years ago
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆16Updated 8 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆21Updated 7 years ago
- Reverse engineered vmware workstation code to aid in kernel debugging.☆14Updated 8 years ago
- ☆27Updated 8 years ago
- Code Integrity Violation Spotter☆16Updated 3 months ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆25Updated 7 years ago