10 results found Sort:

136
1.1k
mit
54
PE Tools - Portable executable (PE) manipulation toolkit
Created 2017-09-01
12 commits to master branch, last one 6 years ago
83
677
gpl-2.0
33
Automatic and platform-independent unpacker for Windows binaries based on emulation
Created 2019-02-07
225 commits to master branch, last one 4 months ago
Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file
Created 2021-06-16
24 commits to master branch, last one 11 months ago
116
604
apache-2.0
31
Portable Executable (PE) library written in .Net
Created 2015-07-02
1,110 commits to master branch, last one 2 months ago
Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
Created 2021-06-05
33 commits to main branch, last one 11 months ago
22
152
mit
6
Python Antivirus Software
Created 2021-07-27
1,267 commits to main branch, last one 10 hours ago
POC of a better implementation of GetProcAddress for ntdll using binary search
Created 2021-12-19
17 commits to main branch, last one 3 years ago
28
90
unknown
6
A Malware classifier dataset built with header fields’ values of Portable Executable files
Created 2016-04-01
46 commits to master branch, last one 2 years ago
15
67
unknown
4
Small visualizator for PE files
Created 2022-07-07
22 commits to master branch, last one about a year ago
Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
Created 2022-10-07
4 commits to main branch, last one 2 years ago