Cmac's repositories
defcon-25-workshop
Windows Post-Exploitation / Malware Forward Engineering DEF CON 25 Workshop
Dreadnought
PoC for detecting and dumping code injection (built and extended on UnRunPE)
glAimbot-rtcw
opengl aimbot for return to castle wolfenstein (rtcw)
hooks-n-holes
Hooks n Holes dev blog
ImprovedReflectiveDLLInjection
An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security
injectAllTheThings
Seven different DLL injection techniques in one single project.
Overwatch-Dump-Fix
x64dbg plugin which removes anti-dumping and obfuscation techniques from the popular FPS game Overwatch.
presentations
An archive of presentations by Trail of Bits
Protectors
🛡️ Obfuscator, Encryption, Junkcode, Anti-Debug, PE protection/modification
ReflectivePELoader
Reflective PE loader for DLL injection
self-morphing-csharp-binary
C# binary that mutates its own code, encrypts and obfuscates itself on runtime
Simple-Mutation-Base
This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does mutate the given code at runtime! Not to mention, there is bad coding practice applied!
Windows-driver-samples
This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.