ytk2128 / api-monitor32

Related projects ⓘ

Alternatives and complementary repositories for api-monitor32

• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆38Updated 3 years ago
• waleedassar / SyscallNumberFinder
  ☆32Updated 3 years ago
• alfarom256 / PebLdr
  ☆15Updated 3 years ago
• mgeeky / PE-library
  Lightweight Portable Executable parsing library and a demo peParser application.
  ☆75Updated last year
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆69Updated 3 years ago
• st4ckh0und / hook-buster
  A compact tool for detecting AV/EDR hooks in default Windows libraries.
  ☆29Updated 2 years ago
• 0xMegaByte / COM-Explained
  ☆27Updated 2 years ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆31Updated 3 years ago
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆62Updated 2 years ago
• rad9800 / VehApiResolve
  ☆98Updated 2 years ago
• mobdk / CloneProcess
  Clone running process with ZwCreateProcess
  ☆58Updated 4 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆47Updated 2 months ago
• m417z / LdrDllNotificationHook
  Hook all callbacks which are registered with LdrRegisterDllNotification
  ☆83Updated last year
• ph4s3tw0 / GetProcAddressCaseStudies
  Six cases demonstrating methods of optimizing GetProcAddress
  ☆17Updated 2 years ago
• hMihaiDavid / addscn
  Add an empty section to a PE file
  ☆50Updated 7 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆20Updated 4 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• uvbs / NT-APC-Injector
  APC DLL Injector with NtQueueApcThread and wake up thread support
  ☆44Updated 7 years ago
• avast / authenticode-parser
  Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.
  ☆16Updated 8 months ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆40Updated 9 years ago
• AlionGreen / apc-injection
  Process Injection: APC Injection
  ☆27Updated 3 years ago
• DanielAvinoam / WindowsKernelProgrammingBook
  Projects I did during the reading of @zodiacon's Windows Kernel Programming book
  ☆9Updated 3 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆26Updated 3 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆34Updated 4 years ago
• OxNinja / C-VM
  My try to implement a virtual CPU in C
  ☆19Updated last year
• LethalSnake1337 / PE-Loader-exercise
  A simple PE loader.
  ☆25Updated last year