Mirrors/wavestone-cdt-edrsandblast
1
0
Fork 0
mirror of https://github.com/wavestone-cdt/EDRSandblast.git synced 2026-06-08 16:37:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
3c3cc307ce39e46cb9a3193fb84de7f334384d43
wavestone-cdt-edrsandblast/EDRSandblast/Utils
T
History
Maxime Meignan bf749f54c7 PE parser: added a feature to parse a PE directly from kernel memory 
Could be used in the future to resolve export instead of a
suspicious LoadLibrary("ntoskrnl.exe")
2023-11-03 16:13:13 +01:00
..
CiOffsets.c
DSE bypass : implemented "callback swapping" method
2023-11-03 15:13:36 +01:00
DriverOps.c
cosmetic changes & compiler warnings fixes
2023-10-09 14:57:49 +02:00
FileUtils.c
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
FileVersion.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
FirewallOps.cpp
small cleanup in header files
2023-10-06 16:12:52 +02:00
HttpClient.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
IsEDRChecks.c
Merge pull request #17 from nuts7/new-edr-drivers
2023-10-10 16:18:42 +02:00
IsElevatedProcess.c
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
KernelMemoryPrimitives.c
various cosmetic changes to please the code analyzer
2023-10-31 17:07:17 +01:00
KernelPatternSearch.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
ListUtils.c
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
NtoskrnlOffsets.c
cosmetic changes
2023-11-03 16:10:40 +01:00
PdbParser.c
various cosmetic changes to please the code analyzer
2023-10-31 17:07:17 +01:00
PdbSymbols.c
Implements a check on PDB files to avoid using an invalid one and crash the machine
2023-10-10 15:44:20 +02:00
PEBBrowse.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
PEParser.c
PE parser: added a feature to parse a PE directly from kernel memory
2023-11-03 16:13:13 +01:00
ProcessDump.c
various cosmetic changes to please the code analyzer
2023-10-31 17:07:17 +01:00
RemotePEBBrowser.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
SignatureOps.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
StringUtils.c
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
SW2_Syscalls_stubs.x64.asm
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
SW2_Syscalls.c
various cosmetic changes to please the code analyzer
2023-10-31 17:07:17 +01:00
SyscallProcessUtils.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
WdigestOffsets.c
small cleanup in header files
2023-10-06 16:12:52 +02:00
WindowsServiceOps.c
small cleanup in header files
2023-10-06 16:12:52 +02:00