Hipepper / anti_all_in_oneView external linksLinks
尽量汇聚反调试资源和利用对抗技术
☆182May 21, 2024Updated last year
Alternatives and similar repositories for anti_all_in_one
Users that are interested in anti_all_in_one are comparing it to the libraries listed below
Sorting:
- ☆27Jan 4, 2024Updated 2 years ago
- 内核驱动加载/卸载痕迹清理,努力绕过反作弊吧 PiDDBCacheTable and MmLastUnloadedDriver☆188Feb 11, 2023Updated 3 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆86Sep 15, 2022Updated 3 years ago
- Another wow64ext to try to be compatible with WOW64 for all architectures.☆98Jan 1, 2026Updated last month
- Radical Windows ARK☆251Apr 18, 2025Updated 9 months ago
- 《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料☆105Jan 26, 2023Updated 3 years ago
- a monitoring windows driver calls kernel api tools☆126Jul 5, 2024Updated last year
- Windows Anti-Rootkit Tool☆542Dec 31, 2025Updated last month
- InfinityHookPro Win7 -> Win11 latest☆551Feb 7, 2023Updated 3 years ago
- 《Windows内核编程》学习☆62Feb 23, 2021Updated 4 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Jan 21, 2023Updated 3 years ago
- GitHub Actions to analyse file using IDA☆35Nov 21, 2024Updated last year
- windwos内核研究与驱动Code☆67Dec 25, 2021Updated 4 years ago
- Windows Kernel inject (no module no thread)☆282Nov 11, 2022Updated 3 years ago
- Load Dll into Kernel space☆39Aug 23, 2022Updated 3 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆109Sep 1, 2022Updated 3 years ago
- 一个用来做windows内核hook的框架☆188Apr 29, 2025Updated 9 months ago
- Kernel Anit Anit Debug Plugins 内核反反调试插件☆478Aug 31, 2021Updated 4 years ago
- 用来辅助分析易语言程序的IDA插件☆518Mar 19, 2024Updated last year
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆80Oct 10, 2022Updated 3 years ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆84Dec 16, 2023Updated 2 years ago
- 笔者在一款基于LLVM编译器架构的retdec开源反编译器工具的基础上,融合了klee符号执行工具,通过符号执行(Symbolic Execution)引擎动态模拟反编译后的llvm的ir(中间指令集)运行源程序的方法,插桩所有的对x86指令集的thiscall类型函数对t…☆224Apr 6, 2022Updated 3 years ago
- ☆144Dec 10, 2022Updated 3 years ago
- 从MmPfnData中枚举进程和页目录基址☆205Aug 18, 2023Updated 2 years ago
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆77Feb 9, 2022Updated 4 years ago
- ☆148Jan 24, 2024Updated 2 years ago
- ☆193May 1, 2023Updated 2 years ago
- The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).☆275Jan 27, 2025Updated last year
- Fix VMProtect3 IAT☆305Dec 5, 2023Updated 2 years ago
- first commit☆64Oct 29, 2020Updated 5 years ago
- ☆174Mar 9, 2022Updated 3 years ago
- The tool can be used to eliminate redundant instructions in a basic block.☆81Jul 17, 2023Updated 2 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- ☆47Feb 3, 2025Updated last year
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆157Mar 26, 2024Updated last year
- Win7内核私有符号结构转储☆70Sep 3, 2021Updated 4 years ago
- an ida plugin used to decompile vmp��☆369Jul 2, 2024Updated last year
- an encryption library designed for Windows kernel and driver programming☆123Aug 4, 2023Updated 2 years ago
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago