vic4key / CFF_VExtension

Related projects: ⓘ

• zodiacon / DbgPrint
  Debug Print viewer (user and kernel)
  ☆63Updated 7 months ago
• mike1k / HardwareBreakpoint
  X86/X64 Hardware Breakpoint Manager
  ☆39Updated 3 years ago
• sum-catnip / kptnhook
  windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking
  ☆50Updated 2 years ago
• VeroFess / X64SystemCall
  All Nt Syscall and W32k Syscall in one asm, include, and call it!
  ☆57Updated 2 years ago
• TomashuTTTT7 / Hidecall
  Hide function calls to prevent reverse-engineering
  ☆64Updated 3 years ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆61Updated 3 weeks ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆39Updated last year
• christianshub / process-injection-guard
  Signature scanner and API hooks to detect malicious process injection
  ☆18Updated last year
• Ahmadmansoor / x64dbgScript
  This is just a x64dbg script system support.
  ☆45Updated 2 years ago
• Vicshann / GInjer
  Global DLL injector
  ☆63Updated 3 years ago
• bytesundso / SneakCalls
  direct systemcalls with a modern c++20 interface.
  ☆41Updated last year
• vic4key / Vutils
  Vutils or Vic Utilities is an utility library written in Modern C++ and for Modern C++. It helps your programming go easier, faster, and …
  ☆68Updated last week
• iArtorias / pelib-updated
  The updated PE file manipulation library from RetDec project.
  ☆19Updated 9 months ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆91Updated 2 years ago
• t0msa / vmp-analyzer
  A tool that aims to aid in finding VM entries in binaries protected by VMProtect 3.5
  ☆23Updated last year
• kanren3 / minhook-native
  Based on minhook
  ☆26Updated last year
• KNSoft / KNSoft.SlimDetours
  SlimDetours is an improved Windows API hooking library base on Microsoft Detours.
  ☆34Updated last month
• vic4key / Cpp-Hooking
  Cpp Hooking - Set up function hooking easily and writing less code (P.S You can also find the python version @ https://github.com/vic4key…
  ☆25Updated 9 months ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆91Updated last year
• 0ffffffffh / system_call_hook_win10_1903
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆50Updated 5 years ago
• moccajoghurt / MemWars
  ☆47Updated 5 years ago
• Shhoya / MutantKiller
  VMP Mutation API Fix
  ☆37Updated 2 years ago
• Broihon / StartRoutine
  A library with four different methods to execute shellcode in a process
  ☆24Updated 4 years ago
• zodiacon / KObjects
  Sample for Creating a new kernel object type and supporting API
  ☆20Updated 2 weeks ago
• zodiacon / TotalSystem
  View Windows System in action
  ☆36Updated last month
• 67-6f-64 / AntiOreans-CodeDevirtualizer
  ☆20Updated last year
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆58Updated 3 years ago
• Flawww / WoW64Injection
  Proof of concept for injecting a 64-bit DLL into a 32-bit application
  ☆24Updated last year
• ranni0225 / WRK
  Windows Research Kernel VS2022 Solution
  ☆22Updated 3 weeks ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆27Updated 2 years ago