Alternatives and similar repositories for virtual_memory_known_dlls

Users that are interested in virtual_memory_known_dlls are comparing it to the libraries listed below

• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆48Updated 2 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• Slowerzs / KeyJumper
  ☆52Updated 9 months ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆80Updated 2 years ago
• rad9800 / RansomFS
  ☆31Updated 9 months ago
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆52Updated last year
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆115Updated 2 years ago
• DISREL / Ring0VBA
  CVE-2018-6066 using VBA
  ☆68Updated 3 years ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆38Updated last year
• LloydLabs / process-enumeration-stealth
  ☆83Updated last year
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆57Updated 3 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆43Updated 2 years ago
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• trailofbits / WinDbg-JS
  ☆27Updated 2 years ago
• jonaslyk / temp
  ☆72Updated 2 years ago
• Slowerzs / CryptDecryptMemory
  ☆31Updated last year
• SpecterOps / ipc-research
  Inter-Process Communication Mechanisms
  ☆28Updated 5 years ago
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆25Updated last month
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated 10 months ago
• enkomio / BrokenFlow
  A simple PoC to invoke an encrypted shellcode by using an hidden call
  ☆116Updated 3 years ago
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆76Updated last year
• Reijaff / offensive_c
  ☆42Updated 2 years ago
• jq0904 / Conference-Presentations
  Slide of my conference presentations
  ☆14Updated last year
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆34Updated 2 years ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆17Updated last year
• LloydLabs / dearg-thread-ipc-stealth
  A novel technique to communicate between threads using the standard ETHREAD structure
  ☆115Updated 4 years ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆118Updated last year
• ihack4falafel / ROR13HashGenerator
  C# implementation to produce ROR-13 numeric hash for given function API name
  ☆34Updated 6 years ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆24Updated 2 years ago