Pinned Repositories
RetroHook
x86/x64 Minimalistic header only VMT library.
NelsonBigHead's Repositories
NelsonBigHead/hwid_spoofer
NelsonBigHead/vtable_hook
easy to use vtable hook with RTTI support
NelsonBigHead/battleye_emulation
BattlEye BEClient<->BEService usermode emulator
NelsonBigHead/furikuri
too busy for that all, furikuri is framework for code protection
NelsonBigHead/autochk-rootkit
Reverse engineered source code of the autochk rootkit
NelsonBigHead/drvmap
driver mapper / capcom wrapper
NelsonBigHead/driver-hijack
NelsonBigHead/Kernelmode-manual-mapping-through-IAT
Manual mapping without creating any threads, with rw only access
NelsonBigHead/portable-executable-library
Automatically exported from code.google.com/p/portable-executable-library
NelsonBigHead/sample_c_vm
An experimental and inefficient architecture and virtual machine written in C, similar to x64 assembly
NelsonBigHead/xLogger
Simple windows API logger
NelsonBigHead/km-um-communication
A somewhat wide collection of various kernelmode-usermode communication methods in one repository (mainly just for learning purposes).
NelsonBigHead/zgui
zxvnme's graphical user interface
NelsonBigHead/xKeLogger
Kernel mode windows NT API logger
NelsonBigHead/pplib
Elevate a process to be a protected process
NelsonBigHead/TDL
Driver loader for bypassing Windows x64 Driver Signature Enforcement
NelsonBigHead/InfinityHook
Hook system calls, context switches, page faults and more.
NelsonBigHead/Polychaos
PE permutation library
NelsonBigHead/csgo_modest
simple csgo cheat base
NelsonBigHead/Nemesis
A customizable process dumper.
NelsonBigHead/RunPE
An example of PE hollowing injection technique
NelsonBigHead/PEReflectiveInjection
Remote PE reflective injection with a simple reflective loader
NelsonBigHead/DumpPE
Dump mapped PE files from memory to the disk
NelsonBigHead/ShellInjector
Execute an arbitrary command within the context of another process
NelsonBigHead/fnv-c
NelsonBigHead/fnv-cpp
NelsonBigHead/KernelSymbolsHelper
Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using the symbol server.
NelsonBigHead/pasticciotto
Polymorphic VM and PoliCTF '17 reversing challenge.
NelsonBigHead/Reverse-Engineering-101
Introductory software reverse engineering tutorial for beginners
NelsonBigHead/Labs