Pinned Repositories
RetroHook
x86/x64 Minimalistic header only VMT library.
NelsonBigHead's Repositories
NelsonBigHead/Packer
PoC executable packer using resources
NelsonBigHead/File-Binder
Binds two files together and updates the stub accordingly. The stub will then drop and execute both files.
NelsonBigHead/python-x86-obfuscator
This is a **WIP** tool that performs shellcode obfuscation in x86 instruction set.
NelsonBigHead/CodeMachineCourse
NelsonBigHead/phantasm-x86-virtualizer
Code virtualizer
NelsonBigHead/pe-infector
Infects PE files with shellcode
NelsonBigHead/sysinternals-source
NelsonBigHead/encrypted_value
Templated structure to encrypt C++ variable
NelsonBigHead/x86-instruction-encoding-tutorial
x86 Instruction Encoding Tutorial
NelsonBigHead/ntdrvldr
A driver loader for Windows NT using NtLoadDriver()
NelsonBigHead/WinIoCtlDecoder
IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
NelsonBigHead/shamoon
Public open-source code of malware Shamoon (aka Disttrack).
NelsonBigHead/net-traveler
Public open-source code of malware NetTraveler (aka TravNet).
NelsonBigHead/rewolf-x86-virtualizer
Simple VM based x86 PE (portable exectuable) protector.
NelsonBigHead/PowerLoader
Power Loader botnet
NelsonBigHead/pcmonitor
pcmonitor - windows kernel driver to monitor users activity(such as keyboard input, screenshot) and send encrypted reports to mobile applications in realtime through intermediate web server
NelsonBigHead/libsplice
Library for kernel and user mode splicing for Windows (x86 and x64).