A sample project for using Capstone from a driver in Visual Studio 2015
☆36May 4, 2016Updated 9 years ago
Alternatives and similar repositories for cs_driver
Users that are interested in cs_driver are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆12Feb 19, 2017Updated 9 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- A tool evaluates security configurations of a given PE based on SDL without source code☆15Jul 6, 2014Updated 11 years ago
- profiling tool for analysising the games, get all the characteristic by hook d3d☆18Oct 10, 2014Updated 11 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆79Aug 12, 2015Updated 10 years ago
- Trying for all arch detour stuff now☆11Feb 10, 2017Updated 9 years ago
- A memory engine that scans, debugs and disassembles an applications memory space.☆14Oct 29, 2017Updated 8 years ago
- wow64 syscall filter☆13Nov 12, 2014Updated 11 years ago
- A system call tracer☆10Sep 22, 2014Updated 11 years ago
- CVE-2014-0816☆25Oct 5, 2016Updated 9 years ago
- DiskCryptor - it's a free solution that allows you to encrypt disk partitions, including system partition.☆17Dec 7, 2011Updated 14 years ago
- ☆11Mar 11, 2015Updated 11 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago
- PE32 binary + W32 payload☆11Jul 23, 2017Updated 8 years ago
- A simple tool to help reverse engineers while dealing with obfuscated code.☆20Sep 5, 2016Updated 9 years ago
- PE/PE +(64bit) Viewer (Qt 5.8)☆10Aug 3, 2018Updated 7 years ago
- An application for obtaining, dumping and modifying token from user land.☆26Nov 21, 2015Updated 10 years ago
- A command line tool to load and unload a device driver.☆46Jun 10, 2017Updated 8 years ago
- ☆14Jun 30, 2015Updated 10 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- kernel space code☆12Jun 8, 2019Updated 6 years ago
- Lua Extension for Windbg☆21Oct 22, 2018Updated 7 years ago
- ☆30May 23, 2017Updated 8 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- Wow64 syscall hook☆43May 28, 2017Updated 8 years ago
- Dynamic binary analysis via platform emulation☆12Aug 10, 2018Updated 7 years ago
- DbgFlashVul☆12Sep 8, 2015Updated 10 years ago
- A windbg extension, extracting token related contents☆41Dec 23, 2020Updated 5 years ago
- Lists work items being queued currently.☆15Jun 7, 2015Updated 10 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Windows过滤驱动-helloworld☆24Aug 27, 2015Updated 10 years ago
- A driverless driver that is supposed to be manually mapped, usually by using TDL exploit. The driver shows how to read/write to any proce…☆22Oct 27, 2017Updated 8 years ago
- Implementation of a thin hypervisor☆43May 20, 2016Updated 9 years ago
- midfunction d3d basehook for winxp, win7, win8, win10☆17Jan 21, 2019Updated 7 years ago
- A loadable dll that tracks memory changes, IAT hooks, and dynamically emplaced "JMP" in the x86 host executable.☆12Oct 22, 2023Updated 2 years ago
- windows kernel File redirection☆20Sep 21, 2014Updated 11 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆23May 31, 2017Updated 8 years ago
- ARMv7 detour function for hooking junk (no thumb support, unaligned accesses are not atomic)☆16Feb 5, 2017Updated 9 years ago