-
Microsoft
- https://billdemirkapi.me
- @BillDemirkapi
Stars
QDrant docker-compose deployment with basic auth/nginx proxy
Native API header files for the System Informer project.
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
The Minimal LZMA (minlzma) project aims to provide a minimalistic, cross-platform, highly commented, standards-compliant C library (minlzlib) for decompressing LZMA2-encapsulated compressed data in…
Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.
An evil RAT (Remote Administration Tool) for macOS / OS X.
Devestating and awesome Linux X86_64 ELF Virus
Code injection by hijacking threads in Windows 32-bit applications
Walking the callstack in windows applications
Windows API tracer for malware (oldname: unitracer)
Abusing SpeedFan driver ability of physical memory manipulation
This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemory.
Ghetto user mode emulation of Windows kernel drivers.
A C/C++ implementation of Microsoft's Antimalware Scan Interface
A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
Demos of various injection techniques found in malware
LoadLibrary DLL Injector Proof-of-Concept in Java