Pinned Repositories
Atom_bombing
Commented version of Atom_bombing injection technique. Original source code from https://blog.ensilo.com/atombombing-brand-new-code-injection-for-windows
Carberp
Carberp Banking Trojan
CreateProcess
A simple C++ app to demo the use of CreateProcess() ,WaitForSingleObject() and use of handles.
DanSpecial
Weaponizing Gigabyte driver for priv escalation and bypass PPL
DrvMon
Advanced driver monitoring utility.
FileTest
Source code for File Test - Interactive File System Test Tool
malware-source-nanomites
NtCreateUserProcess_
peta909's Repositories
peta909/010-Editor-Keygen
KeyGen for 010 Editor
peta909/010editor_keygen
010 editor keygen
peta909/ATR_HAX_CTF
McAfee Advanced Threat Research Capture the Flag
peta909/BokuLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
peta909/CobaltStrikeParser
peta909/cs-video-courses
List of Computer Science courses with video lectures.
peta909/cyberchef-recipes
A list of cyber-chef recipes and curated links
peta909/Deterministic_LFH
Have fun with the LowFragmentationHeap
peta909/Diamorphine
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
peta909/docs
documentations, slides decks...
peta909/EDRSandblast
peta909/EfiGuard
Disable PatchGuard and DSE at boot time
peta909/FIDL
A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research
peta909/flare-ida
IDA Pro utilities from FLARE team
peta909/freepascal
Free Pascal Compiler - an open source Object Pascal compiler. This is an unofficial mirror of the FPC SubVersion repository and is for convenience use only. It is synced every 15 minutes. For submitting patches or bug reports, go to http://bugs.freepascal.org
peta909/go_parser
Yet Another Golang binary parser for IDAPro
peta909/IcedDecrypt
IcedID Decryption Tool
peta909/ida
IDA related stuff
peta909/IDBs
Analyses in IDA/Hex-Rays
peta909/liblnk
Library and tools to access the Windows Shortcut File (LNK) format
peta909/openhardwaremonitor
Open Hardware Monitor
peta909/Prezos
Collection of Slides from presentations open to public
peta909/PTView
Browse Page Tables on Windows
peta909/pygore
pyGoRE - Python library for analyzing Go binaries
peta909/RpcView
RpcView is a free tool to explore and decompile Microsoft RPC interfaces
peta909/SymbolicExecutionDemystified
Slides and Material for "SymbolicExecutionDemystified" Presentation @ Insomni'Hack 2022
peta909/unDefender
Killing your preferred antimalware by abusing native symbolic links and NT paths.
peta909/UPX
A utility to fix intentionally corrupted UPX packed files.
peta909/Vanguard
Official Vanguard Anti-Cheat source code.
peta909/VMProtect-devirtualization
Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.