ChenChen-hrbust / API_watching
监视Windows系统下程序执行过程中的API调用,采用Ring3 Hook方式进行监控,记录API调用,分析软件行为。
☆29Updated 12 years ago
Related projects: ⓘ
- 逆的或者收集的别人家的代码☆26Updated 10 months ago
- 我的开源:讲解anything☆19Updated 3 years ago
- ExStudPE Visual Tools 是一个扩展StudPE、LordPE等软件的用于PE(32位)、PE+(64位)、NE、Elf(32位)、Coff、Lib格式二进制可执行目标文件(*.exe、*.dll、*.ocx、*.so、*.lib、*.obj、*.exp等…☆46Updated 4 years ago
- ☆17Updated this week
- WIN64驱动编程基础教程-源码 作者:胡文亮☆84Updated 6 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆20Updated 6 years ago
- 安全卫士项目☆32Updated 7 years ago
- windows 系统API C++封装库,包含进程间通讯,互斥,内存队列等通用功能☆53Updated 8 years ago
- shellcode注入测试工具☆49Updated 5 years ago
- 卓然主动防御源码(可执行文件+完整源码+完整作品报告)☆14Updated 5 years ago
- 此目录收集整理反调试方法☆71Updated 2 years ago
- 寒江独钓 Windows内核安全编程☆43Updated 11 years ago
- 进程行为分析工具☆14Updated 7 years ago
- Windows内核设计思想☆21Updated 7 years ago
- An minifilter-based transparent encryptor on Windows.☆31Updated 7 years ago
- PE文件解析和加壳工具☆18Updated last year
- x64HOOK库☆18Updated 4 years ago
- 小型主动防御引擎☆58Updated 8 years ago
- 反射式注入☆24Updated 5 years ago
- 《Windows内核编程》学习☆56Updated 3 years ago
- 主动防御-网络过滤器(firewall)☆5Updated last year
- 一个可以帮助你进行Windows驱动开发和分析的工具。☆40Updated 3 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Updated 10 years ago
- ☆22Updated 9 years ago
- Windows 驱动开发基础函数库,供个人使用☆13Updated 4 years ago
- A file system filter, you can do some interesting thing, maybe it's cool.☆54Updated 5 years ago
- ☆69Updated this week
- 基于UC的启发式杀毒引擎[还没做完]☆30Updated 3 years ago
- minihttp by libcurl, support https.☆16Updated 4 years ago
- base on winHttp to develep download☆11Updated 6 years ago