therealdreg / xshellex

Related projects: ⓘ

• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆40Updated last year
• hasherezade / tag_converter
  ☆21Updated 3 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆36Updated 2 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆32Updated 3 years ago
• SandboxEscaper / msihijacker
  ☆31Updated this week
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆49Updated 7 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• waleedassar / SyscallNumberFinder
  ☆32Updated 2 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆29Updated 5 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 4 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 5 years ago
• zhuhuibeishadiao / exploit-RemoteDesktopServerDriver
  exploit termdd.sys(support kb4499175)
  ☆58Updated 5 years ago
• slaeryan / WKPExercises
  ☆19Updated this week
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆18Updated last year
• KbaHaxor / Ammyy-v3
  Ammyy v3 Source Code leak , with ❤️ <3
  ☆36Updated 7 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆48Updated 4 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆54Updated 4 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆62Updated 7 years ago
• horsicq / Formats
  Binary formats
  ☆24Updated this week
• zodiacon / AccessMask
  ☆18Updated 5 years ago
• am0nsec / vxlib
  C Header Only Library for Virii
  ☆9Updated 3 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆50Updated 5 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆30Updated 7 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆103Updated 4 years ago
• LordNoteworthy / awesome-virtualization
  ☆17Updated 5 years ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆34Updated 2 years ago
• ioncodes / rw
  allowing um r/w through km from um ioctl ™
  ☆12Updated 2 years ago