therealdreg / Win.CerdaluxView external linksLinks
WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
☆18Aug 11, 2023Updated 2 years ago
Alternatives and similar repositories for Win.Cerdalux
Users that are interested in Win.Cerdalux are comparing it to the libraries listed below
Sorting:
- FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.☆19Jul 10, 2025Updated 7 months ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆128Aug 11, 2023Updated 2 years ago
- short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)☆23Aug 11, 2023Updated 2 years ago
- ☆17Jun 30, 2020Updated 5 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- PoC Reverse Text segment ELF File infector☆14Feb 28, 2020Updated 5 years ago
- A PE morphing tool that allows you to mimic one executable file to another.☆11Dec 6, 2023Updated 2 years ago
- ☆12Feb 28, 2022Updated 3 years ago
- ⚠️ Collection of malicious file ⚠️☆13May 5, 2021Updated 4 years ago
- Process injection via KernelCallbackTable☆13Jan 28, 2022Updated 4 years ago
- x86 OS development using Bochs emulator. MIT xv6, JamesM's kernel development tutorials (with some changes) & more☆85Aug 11, 2023Updated 2 years ago
- 一个加壳工具☆62May 17, 2019Updated 6 years ago
- Taking advantage of CRT initialization, to get away with hooking protected applications☆48Nov 2, 2022Updated 3 years ago
- ☆18Mar 28, 2023Updated 2 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 3 years ago
- Advanced driver monitoring utility.☆218Jul 13, 2022Updated 3 years ago
- use crystalCPUID to identify vt-x & amd-v☆17Apr 8, 2015Updated 10 years ago
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Aug 11, 2023Updated 2 years ago
- ☆16Sep 23, 2021Updated 4 years ago
- Learning Process Injection and Hollowing techniques☆42Jun 26, 2022Updated 3 years ago
- pwn++ is a Windows & Linux library oriented for exploit dev but mostly used to play with modern C++ features☆171Jun 9, 2025Updated 8 months ago
- A C++/Asm template for PIC/EXE/DLL malware☆24Aug 12, 2025Updated 6 months ago
- Headers for linking your software with ntdll.dll☆15Nov 4, 2020Updated 5 years ago
- Simple and sane compression wrapper library.☆19Oct 28, 2022Updated 3 years ago
- My adventures in learning about different userland malware techniques, such as syscalls, injection, unhooking or sandbox evasion.☆79Jan 10, 2024Updated 2 years ago
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆136Jan 2, 2023Updated 3 years ago
- Support for UASM x86 and x64 assembler in RadASM 2.2.2.x☆24Aug 18, 2022Updated 3 years ago
- XrefsExt plugin for IDA Pro(idapython,ida plugin,ida plugins)☆26Nov 13, 2024Updated last year
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆45Oct 26, 2018Updated 7 years ago
- BitRat Source Code☆42Oct 23, 2020Updated 5 years ago
- Bypasses for Windows kernel callbacks PatchGuard protection☆44Aug 15, 2021Updated 4 years ago
- Exploring in-memory execution of .NET☆138Apr 20, 2022Updated 3 years ago
- Easy to include string and wstring obfuscation☆23Mar 12, 2022Updated 3 years ago
- IDB parser☆22Nov 24, 2025Updated 2 months ago
- An example pattern in C# for using WMI to monitor process creation and termination events.☆53Aug 13, 2018Updated 7 years ago
- Windows Kernel Programming Experiments☆85Sep 18, 2022Updated 3 years ago
- 基于UC的启发式杀毒引擎[还没做完]☆35Mar 28, 2021Updated 4 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Mar 12, 2024Updated last year
- ☆21Jan 28, 2020Updated 6 years ago