peta909

Malware Researcher, always hoping to learn more and share knowledge with others.

Singapore

Pinned Repositories

Atom_bombing
Commented version of Atom_bombing injection technique. Original source code from https://blog.ensilo.com/atombombing-brand-new-code-injection-for-windows
Language:C++2 1 02
Carberp
Carberp Banking Trojan
Language:C++1 0 00
CreateProcess
A simple C++ app to demo the use of CreateProcess() ,WaitForSingleObject() and use of handles.
Language:C++3 1 00
DanSpecial
Weaponizing Gigabyte driver for priv escalation and bypass PPL
Language:C1 1 00
DrvMon
Advanced driver monitoring utility.
Language:C1 0 00
FileTest
Source code for File Test - Interactive File System Test Tool
Language:C++1 1 00
malware-source-nanomites
Language:Assembly1 1 00
NtCreateUserProcess_
Language:C12 3 24

peta909's Repositories

peta909/CreateProcess
A simple C++ app to demo the use of CreateProcess() ,WaitForSingleObject() and use of handles.
Language:C++3 1 00
peta909/FileTest
Source code for File Test - Interactive File System Test Tool
Language:C++1 1 00
peta909/analysis.oreans
🔎 Analysis of Oreans: Looking inside Themida, WinLicense, and CodeVirtualizer
Language:Python1 0
peta909/APT32_Deobfuscate
My scripts to deobfuscate APT32 malware
Language:Python1 0
peta909/challenges-2020
Language:Python1 0
peta909/CobaltStrike
CobaltStrike's source code
peta909/COM_Mapper
A tool to create COM class/interface relationships in neo4j
Language:C#1 0
peta909/cpuid
CPU feature identification for Go
Language:Go0 0
peta909/CTF-All-In-One
CTF竞赛入门指南
Language:C0 0
peta909/ExploitCapcom
This is a standalone exploit for a vulnerable feature in Capcom.sys
Language:C++1 0
peta909/flare-on-2020
FireEye 7th Flare-On challenge (2020)
Language:Python1 01
peta909/Flare-On-Challenges
This repo is aim to compile all Flare-On challenge's binaries. Update: 2014 -2020.
peta909/freepascal
Free Pascal Compiler - an open source Object Pascal compiler. This is an unofficial mirror of the FPC SubVersion repository and is for convenience use only. It is synced every 15 minutes. For submitting patches or bug reports, go to http://bugs.freepascal.org
Language:Pascal1 0
peta909/gld
Go shellcode LoaDer
Language:Go1 0
peta909/GoProcessInject0r
Proof of concept for single/multiple shellcode process injection malware in Go language.
Language:Go1 0
peta909/GpuRamDrive
RamDrive that is backed by GPU Memory
peta909/idacode
An integration for IDA and VS Code which connects both to easily execute and debug IDAPython scripts.
Language:Python1 0
peta909/KasperskyHook
Hook system calls on Windows by using Kaspersky's hypervisor
Language:C++1 0
peta909/linux-rootkits
A collection of Linux kernel rootkits found across the internet taken and put together
Language:C0 0
peta909/Mapping-Injection
Just another Windows Process Injection
Language:Assembly1 0
peta909/MIRACL
MIRACL Cryptographic SDK: Multiprecision Integer and Rational Arithmetic Cryptographic Library is a C software library that is widely regarded by developers as the gold standard open source SDK for elliptic curve cryptography (ECC).
Language:C0 0
peta909/NoVmp
A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
Language:C++1 0
peta909/PEzor
Read the blog post here: https://iwantmore.pizza/posts/PEzor.html
Language:C0 0
peta909/process_chameleon
A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
Language:C1 0
peta909/ShellCodeEmulator
Shellcode emulator written with Unicorn
Language:Python1 0
peta909/tiny-AES-c
Small portable AES128/192/256 in C
Language:C1 0
peta909/unipacker
Automatic and platform-independent unpacker for Windows binaries based on emulation
Language:Python1 0
peta909/vmpdump
A dynamic VMP dumper and import fixer, powered by VTIL.
Language:C++0 0
peta909/win32api-practice
Offensive tools written for practice purposes
Language:C++1 0
peta909/x86-Code-Virtualizer
x86 Binary Code Virtualization Tool
Language:C++1 0