ChenChen-hrbust / API_watchingLinks
监视Windows系统下程序执行过程中的API调用,采用Ring3 Hook方式进行监控,记录API调用,分析软件行为。
☆32Updated 13 years ago
Alternatives and similar repositories for API_watching
Users that are interested in API_watching are comparing it to the libraries listed below
Sorting:
- ☆97Updated 4 years ago
- 此目录收集整理反调试方法☆75Updated 4 years ago
- 我的开源:讲解anything☆20Updated 5 years ago
- ExStudPE Visual Tools 是一个扩展StudPE、LordPE等软件的用于PE(32位)、PE+(64位)、NE、Elf(32位)、Coff、Lib格式二进制可执行目标文件(*.exe、*.dll、*.ocx、*.so、*.lib、*.obj、*.exp等…☆59Updated 5 years ago
- x64HOOK库☆18Updated 6 years ago
- A file system filter, you can do some interesting thing, maybe it's cool.☆55Updated 6 years ago
- 一个32位windows下x86指令集的代码扭曲加密小工具☆33Updated 6 years ago
- 逆的或者收集的别人家的代码☆29Updated last year
- ☆31Updated 9 years ago
- WIN64驱动编程基础教程-源码 作者:胡文亮☆90Updated 7 years ago
- 一个可以帮助你进行Windows驱动开发和分析的工具。☆46Updated 4 years ago
- LookDrvCode☆31Updated 11 years ago
- 卓然主动防御源码(可执行文件+完整源码+完整作品报告)☆15Updated 6 years ago
- 寒江独钓 Windows内核安全编程☆45Updated 13 years ago
- 8种检测虚拟机方法☆105Updated 7 years ago
- ☆39Updated 6 years ago
- ☆40Updated 6 years ago
- 过TP驱动☆28Updated 5 years ago
- 基于Unicorn仿真PE模拟☆31Updated 3 years ago
- windows 系统API C++封装库,包含进程间通讯,互斥,内存队列等通用功能☆55Updated 9 years ago
- ida提取特征码脚本☆56Updated 6 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Updated 11 years ago
- intel vt-x hypervisor ept☆25Updated 5 years ago
- 32_64位 的Hook 和线程注入, MFC的DLL注入工具☆29Updated 8 years ago
- 带有代码分析器的混乱虚拟机保护引擎☆14Updated 5 years ago
- myLittleBear☆58Updated 7 months ago
- 加载内存当中的DLL文件☆83Updated 7 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Updated 7 years ago
- 锁主页驱动☆42Updated 6 years ago
- ☆35Updated 3 years ago