securesean / Shim-Process-ScannerLinks
Windows x64 Process Scanner to detect application compatability shims
☆37Updated 6 years ago
Alternatives and similar repositories for Shim-Process-Scanner
Users that are interested in Shim-Process-Scanner are comparing it to the libraries listed below
Sorting:
- ☆22Updated 4 years ago
- ☆22Updated 4 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- Subtract one PE file from another!☆22Updated 3 years ago
- Using Undocumented NTDLL Functions to Read/Write/Delete File☆18Updated 4 years ago
- Headers for linking your software with ntdll.dll☆15Updated 4 years ago
- ☆31Updated 4 years ago
- ☆34Updated 7 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- A ready-made template for a project based on libpeconv.☆48Updated 4 months ago
- A small library helping to parse commandline parameters (for C/C++)☆57Updated 3 weeks ago
- ☆20Updated 5 years ago
- ☆16Updated 7 years ago
- ☆45Updated 7 years ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆33Updated 4 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆35Updated 3 years ago
- Resources from my journey into Windows binary exploitation☆22Updated 6 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆26Updated 6 years ago
- A POC for Windows Extension Host hooking☆22Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- ☆36Updated 6 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- ☆16Updated 5 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- vmware-backdoor☆33Updated 3 years ago
- Clone running process with ZwCreateProcess☆57Updated 4 years ago
- An opensource API hooking framework☆22Updated 5 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Blog posts☆30Updated 4 years ago