samshine's repositories
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources
pubg-internal
Demo internal ESP and Aimbot for PUBG.
Deviare2
Deviare API Hook
UMPMLib
A library to manipulate physical memory from usermode.
d3d8to9
A D3D8 pseudo-driver which converts API calls and bytecode shaders to equivalent D3D9 ones.
RISCYpacker
Process Hollowing Packer
ExeToC-Decompiler
(fork)Decompile win32 program and DLL to C++ step by step. Allow some interactive. Main functions already work: *support if/else/for/do/while/break/switch case/continue *support API *support C++ head file load *support standard library function recognize
Lynx
Dodgy reflective DLL injector PoC for 32-bit Windows
Phage
Reflective DLL Injection style process infector
FuckBattlEye
Bypassing kernelmode anticheats via handle inheritance (across sections)
Amber
POC Reflective PE packer.
StrongOD
StrongOD(anti anti-debug plugin) driver source code.
Windows-Research-Kernel-Hacking
Operating Systems technical challenge based on the Windows Research Kernel
bgfx
Cross-platform, graphics API agnostic, "Bring Your Own Engine/Framework" style rendering library.
XenoScan
Open source memory scanner written in C++
CallbackDisabler
Disable Driver Callbacks
sol2
Sol v2.0 - a C++ <-> Lua API wrapper with advanced features and top notch performance - is here, and it's great! Documentation:
demovfuscator
A work-in-progress deobfuscator for movfuscated binaries
UASM
UASM - Macro Assembler
msf
Mini Shell extension Framework
HandleMaster
Changes handle's access rights using DKOM with a vulnerable driver
Molebox
MoleBox lets you convert your application into an all-sufficient stand-alone executable, containing everything needed: components, media assets, registry entries.
ThemidaProcmon
After Process monitor, execute Themida
delphi-detours-library
Delphi Detours Library
HLeaker
An usermode alternative for DuplicateHandle.