edix's repositories
HiddenProcessDetection
Examples for detection of hidden processes on windows
MalwareResourceScanner
Scanning and identifying XOR encrypted PE files in PE resources
AlternativeCreateRemoteThread-public
Load and unload a DLL into an remote process without using WriteProcessMemory ;)
AlternativeIsDebuggerPresent
Alternative (and cooler) version of IsDebuggerPresent API
MyTerminateProcess
Terminates a process by using DuplicateHandle and DUPLICATE_CLOSE_SOURCE flag.
AutoDecompress
IDA Pro Plugin to unpack data at given offset
AlternativeDeleteFile
Using native API to delete files on windows
bifrost_decoder
Decoder for Bifrost RAT
BugCatcher
IDA Pro Plugin for catching bugs
EntropyDir
Python script. Calculates entropy of all files in a directory.
RATDecoders
Python Decoders for Common Remote Access Trojans