Pinned Loading
-
WizardVM
WizardVM PublicWizardVM is a windows 10 malware analysis environment defined through infrastructure as code using Hashicorp Packer.
PowerShell
-
Windows-Shellcode-Injection-Methods
Windows-Shellcode-Injection-Methods PublicA repository documententing various shellcode execution methods for Windows, in C.
C
-
WizardCalls
WizardCalls PublicA tool for generating indirect syscalls for use in C based Windows implants
C
-
NtQuerySystemInformation-Userland-Hooking
NtQuerySystemInformation-Userland-Hooking PublicA project showing how processes can be hidden on Windows by hooking NtQuerySystemInformation from userland
C
-
Something went wrong, please refresh the page to try again.
If the problem persists, check the GitHub status page or contact support.
If the problem persists, check the GitHub status page or contact support.