silverf0x / RpcViewLinks
RpcView is a free tool to explore and decompile Microsoft RPC interfaces
☆994Updated last year
Alternatives and similar repositories for RpcView
Users that are interested in RpcView are comparing it to the libraries listed below
Sorting:
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,265Updated 2 months ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆820Updated 3 years ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,243Updated last year
- Protected Processes Light Killer☆949Updated 2 years ago
- ☆818Updated 5 years ago
- Obfuscate specific windows apis with different apis☆1,010Updated 4 years ago
- Quickly debug shellcode extracted during malware analysis☆610Updated 2 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆617Updated 8 years ago
- DEFCON 27 workshop - Modern Debugging with WinDbg Preview☆734Updated 9 months ago
- A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)☆423Updated last year
- Extract Windows Defender database from vdm files and unpack it☆453Updated 2 weeks ago
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆622Updated 2 years ago
- Windows NT Syscall tables☆1,317Updated last month
- VirtualKD-Redux - A revival and modernization of VirtualKD☆921Updated last year
- Shellcode Compiler☆1,120Updated 11 months ago
- Converts a DLL into EXE☆815Updated 2 years ago
- A memory scanning evasion technique☆885Updated 8 years ago
- Native API header files for the System Informer project.☆1,243Updated 2 months ago
- ☆807Updated 2 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆525Updated last month
- A Pin Tool for tracing API calls etc☆1,524Updated 2 months ago
- WinDBG Anti-RootKit Extension☆637Updated 5 years ago
- Portable Executable parsing library (from PE-bear)☆658Updated 3 months ago
- PE-bear (builds only)☆780Updated 2 years ago
- Windows NT x64 syscall fuzzer☆621Updated last month
- Process Monitor X v2☆629Updated last year
- My personal cheat sheet for using WinDbg for kernel debugging☆433Updated 4 months ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,356Updated last year
- Windows Object Explorer 64-bit☆1,804Updated last week
- Windows Kernel Drivers fuzzer☆365Updated 8 years ago