whichbuffer / Antidebug
Defeating Anti-Debugging Techniques for Malware Analysis
☆13Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Antidebug
- ☆12Updated 2 years ago
- ☆22Updated 2 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆22Updated 2 years ago
- Collection of generic YARA rules☆14Updated 5 months ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 4 months ago
- Malware campaigns and APTs research by BlackArrow☆18Updated 4 years ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆23Updated 2 years ago
- ☆21Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- ☆27Updated 3 months ago
- ☆18Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated last year
- ☆18Updated 7 months ago
- WMI SA stuffs☆29Updated 2 years ago
- Progress of learning kernel development☆14Updated 2 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated last year
- Dump Lsass Memory Using a Reflective Dll☆14Updated 2 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- My nim learning experiments☆11Updated 2 years ago
- ☆34Updated last year
- Tool for obtaining information about PPL processes☆17Updated 9 months ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- ☆12Updated 3 years ago
- Repository for LNK stuff☆27Updated 2 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated last year