hasherezade

icon indicating a website link https://hasherezade.net

icon location Poland

Results 61 repositories owned by hasherezade

bearparser

640
Stars
104
Forks
Watchers

Portable Executable parsing library (from PE-bear)

verified publisher icon hasherezade

IAT_patcher

242
Stars
70
Forks
Watchers

Persistent IAT hooking application - based on bearparser

verified publisher icon hasherezade

malware_training_vol1

1.9k
Stars
184
Forks
Watchers

Materials for Windows Malware Analysis training (volume 1)

verified publisher icon hasherezade

pe-sieve

2.9k
Stars
416
Forks
Watchers

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

verified publisher icon hasherezade

hollows_hunter

1.9k
Stars
248
Forks
Watchers

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

verified publisher icon hasherezade

demos

787
Stars
186
Forks
Watchers

Demos of various injection techniques found in malware

verified publisher icon hasherezade

pe_to_shellcode

2.2k
Stars
414
Forks
Watchers

Converts PE into a shellcode

verified publisher icon hasherezade

libpeconv

1.1k
Stars
175
Forks
Watchers

A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl

verified publisher icon hasherezade

dll_to_exe

774
Stars
166
Forks
Watchers

Converts a DLL into EXE

verified publisher icon hasherezade

module_overloading

331
Stars
56
Forks
Watchers

A more stealthy variant of "DLL hollowing"

verified publisher icon hasherezade