hasherezade's starred repositories
flare-floss
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
rewolf-wow64ext
Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.
awesome-edr-bypass
Awesome EDR Bypass Resources For Ethical Hacking
polytracker
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
Hunt-Sleeping-Beacons
Aims to identify sleeping beacons
CallStackSpoofer
A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
PowerLoaderEx
PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
HookingNirvana
Recon 2015 Presentation from Alex Ionescu
SweetDreams
Implementation of Advanced Module Stomping and Heap/Stack Encryption
phnt-single-header
Single header version of System Informer's phnt library.
pi-defender
Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.
IAT-Tracer
An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (.tag) files.
yara-rules
YARA rules for use with ProcFilter
CCHookReloaded
A modern, mod independent open source cheat for Enemy Territory
TinyProcessor
A post-processing script for TinyTracer
TrknHuntRthys
Specific C2 Detection Tool Written To Detect C2 Servers From Rhadamanthys Stealer Malware.