 Maxime Meignan
|
bf749f54c7
|
PE parser: added a feature to parse a PE directly from kernel memory
Could be used in the future to resolve export instead of a
suspicious LoadLibrary("ntoskrnl.exe")
|
2023-11-03 16:13:13 +01:00 |
|
|
Maxime Meignan
|
15c3b706f1
|
various cosmetic changes to please the code analyzer
|
2023-10-31 17:07:17 +01:00 |
|
|
Maxime Meignan
|
4d2789b21b
|
added a PE_find_static_relative_reference function (not used yet)
Function that can be used to find cross-references of a global variable
or a function
|
2023-10-19 11:20:30 +02:00 |
|
|
Maxime Meignan
|
43cea1f08b
|
small cleanup in header files
|
2023-10-06 16:12:52 +02:00 |
|
|
Qazeer
|
48a75a7029
|
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
Co-authored-by: Maxime Meignan <maxime.meignan@wavestone.com>
|
2022-08-13 09:23:48 -07:00 |
|