amber
PE loader
Creates reflective PE files that can be executed in memory without being written to disk
Reflective PE packer.
1k stars
47 watching
209 forks
Language: Go
last commit: 12 months ago
Linked from 1 awesome list
amberassemblycrypterpackerpayloadpeshellcodeshellcode-loaderstub
Related projects:
| Repository | Description | Stars |
|---|---|---|
 hasherezade/libpeconv | A C++ library that provides a set of helper functions for loading, manipulating, and dumping PE files. | 1,129 |
 elastic/ember | A collection of features extracted from PE files for use in malware benchmarking and classification | 962 |
| hasherezade/mal_unpack | A tool to unpack malicious code from packed executables using the PE-sieve technique. | 668 |
 silva97/pei | Tools for injecting and manipulating code in PE executables | 30 |
 packing-box/pypackerdetect | Detects whether an executable is packed using various methods and signatures. | 21 |
 czs108/windows-pe-packer | A tool that packs Windows executable files to make them harder to reverse-engineer | 330 |
| hasherezade/transacted_hollowing | An implementation of a memory-based PE injection technique for executing payloads in a target process | 521 |
 ember-engines/ember-asset-loader | Asset loading support for Ember applications | 34 |
 levanvn/pe_packer | Writing a simple PE Packer in detail to understand its inner workings and techniques | 15 |
| hasherezade/bearparser | A C++ library for parsing Portable Executable files | 647 |
 samlarenn/pepacker | A tool for encrypting and obfuscating .text sections of executable files. | 49 |
 nqntmqmqmb/xorpacker | A tool that encrypts and decrypts .NET executables using a simple XOR cipher | 14 |
 z3r0d4y5/simple-pe32-packer | A tool for compressing and decompressing PE32 executables using aPLib compression library | 10 |
| hasherezade/pe-bear-releases | An open-source tool for analyzing and editing PE file formats | 772 |
 eknkc/amber | A templating engine inspired by HAML and Jade for the Go programming language | 916 |