Process Creation, Image Load and Thread Creation Notification
☆13Sep 15, 2023Updated 2 years ago
Alternatives and similar repositories for Captain
Users that are interested in Captain are comparing it to the libraries listed below
Sorting:
- Linux Malware creator to attack Windows System via Reverse Shell with FindWindow Process Code Injection☆19Mar 18, 2023Updated 3 years ago
- VEH debug plugin☆13Apr 28, 2022Updated 3 years ago
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Jan 9, 2022Updated 4 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- ☆23Jul 24, 2023Updated 2 years ago
- This is the PoC of a dynamic lifter and deobfuscator with collecting trace.☆37Oct 11, 2023Updated 2 years ago
- Windows kernel driver template for cmkr and llvm-msvc.☆35Dec 20, 2023Updated 2 years ago
- Very tiny and selective implementation of STL for Windows NT kernel mode drivers☆18Jun 22, 2021Updated 4 years ago
- Handle access elevation by DKOM☆12Sep 29, 2022Updated 3 years ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- Example managed and unmanaged plugins for CoreHook☆14Mar 3, 2019Updated 7 years ago
- Some examples of anti debug techniques used in malware or commercial products preventing analysts to debug code of app.☆22Apr 18, 2020Updated 5 years ago
- Looks for a vulnerable entry point to bypass BE Anti Cheat or other in Ring3☆17Feb 25, 2023Updated 3 years ago
- ATHERCRC32 Provide developers with a complete framework for using CRC32 in functions/classes in memory, and protecting your software agai…☆15Jan 29, 2021Updated 5 years ago
- hooking KiUserApcDispatcher☆27Apr 3, 2017Updated 8 years ago
- Plugin for x64dbg to disable parallel loading of dependencies☆19Sep 3, 2022Updated 3 years ago
- Example code to use DRM KMS mode with dumbbuffer☆15Oct 8, 2014Updated 11 years ago
- Tool for creating an animated GIF from a spritesheet of still images☆11Oct 23, 2025Updated 4 months ago
- Procmonel is Procmon like monitoring system implemented using Microsoft WDK☆13Dec 25, 2019Updated 6 years ago
- Minimal header-only C++11 argument parser library for simple command line tools.☆25Feb 2, 2025Updated last year
- Interprocess communication library, providing the ability to call functions from each other☆20Oct 3, 2019Updated 6 years ago
- devirtualization vmprotect☆65Mar 11, 2023Updated 3 years ago
- Windows user mini-dump helper library to extract data from it.☆13May 17, 2025Updated 10 months ago
- ☆17Apr 18, 2023Updated 2 years ago
- Windows Simple Process Logger implemented as driver☆18Oct 27, 2017Updated 8 years ago
- Tracing and parsing an executing binary file☆30Aug 7, 2015Updated 10 years ago
- 通过重造轮子和调用OpenSSL的方式学习密码!!☆15Jan 28, 2023Updated 3 years ago
- A simple password-based PE encryptor for Windows 32-bit executables.☆51Jan 9, 2025Updated last year
- ☆56Nov 21, 2022Updated 3 years ago
- VMProtectTest☆41Feb 16, 2023Updated 3 years ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…☆45Apr 1, 2023Updated 2 years ago
- A simple open source module injector library x86/x64 for Windows☆22Jan 16, 2020Updated 6 years ago
- Miscellaneous Code and Docs☆83Jul 12, 2025Updated 8 months ago
- BITS Transfers Manager☆46May 18, 2025Updated 10 months ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆28Feb 15, 2022Updated 4 years ago
- Libraries written in inline assembly☆19Aug 7, 2023Updated 2 years ago
- SBLoader is a memory patcher to patch and execute the child process under the desired parent process.☆15Jun 25, 2022Updated 3 years ago
- A basic Secure Virtual Machine hypervisor☆27Feb 25, 2021Updated 5 years ago