Alternatives and similar repositories for HIPS-HIDS_CveMod:

Users that are interested in HIPS-HIDS_CveMod are comparing it to the libraries listed below

• theSecHunter / Hades-Linux
  Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).
  ☆24Updated 3 months ago
• TimelifeCzy / Security-guard
  安全卫士r3工具集
  ☆37Updated 5 years ago
• y11en / PEBFake
  PEBFake(修改PEB 伪装当前进程路径、参数等)
  ☆51Updated 4 years ago
• lracker / MyPack
  加密壳
  ☆33Updated 5 years ago
• huoji120 / DuckSandboxDetect
  沙箱测试,测评国内常见沙箱的代码与结论
  ☆100Updated 3 years ago
• huoji120 / Heuristic_antivirus_engine_by_huoji
  基于UC的启发式杀毒引擎[还没做完]
  ☆34Updated 3 years ago
• huoji120 / Etw-Syscall
  https://key08.com/index.php/2021/10/19/1375.html
  ☆65Updated 2 years ago
• 0xfei / wincode
  过去写的一些Windows安全研究相关代码
  ☆135Updated 6 years ago
• namjkee / ssdt.Recover.21yu3
  绕过卡巴斯基主动防御,加载驱动，unhook所有ssdt hook及shadow ssdt hook
  ☆37Updated 9 years ago
• huoji120 / numen
  简单安排一下 autochk.sys 这个rootkit
  ☆71Updated 2 years ago
• huoji120 / safe_duck
  一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
  ☆19Updated last year
• killeven / ObjToShellCode
  Rapid generation ShellCode
  ☆60Updated 7 years ago
• bopin2020 / WindowsCamp
  Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&
  ☆56Updated 2 months ago
• Gilfoylex / windows_hack_teach
  windows 黑客技术编程技术详解配套的代码资源
  ☆14Updated 5 years ago
• D0pam1ne705 / Direct-NtCreateUserProcess
  Call NtCreateUserProcess directly as normal.
  ☆68Updated 2 years ago
• Yyyyshen / WindowsKernelPrograming
  《Windows内核编程》学习
  ☆57Updated 4 years ago
• y11en / BlockRDPBrute
  [HIPS]RDP(3389)爆破防护
  ☆45Updated 6 years ago
• jash-git / Windows-Hack-Programming-backup
  WINDOWS黑客編程技術詳解 [Windows-Hack-Programming backup]
  ☆42Updated 5 years ago
• hackflame / ida_python_extractCode
  ida提取特征码脚本
  ☆55Updated 5 years ago
• cbwang505 / poolfengshui
  笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包…
  ☆77Updated 3 years ago
• BeneficialCode / KPPL
  Kill Protected Process Light Process (include av)
  ☆56Updated last year
• Q4n / SuperPriv
  从admin冲到TrustedInstaller
  ☆17Updated 2 years ago
• huoji120 / HandleMaster
  Changes handle's access rights using DKOM with a vulnerable driver
  ☆25Updated 7 years ago
• supermanc88 / Document
  windows驱动开发、linux编程等
  ☆59Updated 3 years ago
• splunk / PPLinject
  Inject unsigned DLL into Protected Process Light (PPL)
  ☆21Updated 3 months ago
• w1nds / ishellcode
  shellcode注入测试工具
  ☆49Updated 5 years ago
• muxq / hellorpc
  windows rpc 使用MIDL+RPC实现HelloWorld
  ☆23Updated 7 years ago
• fengjixuchui / InitiativeDefense
  卓然主动防御源码（可执行文件+完整源码+完整作品报告）
  ☆15Updated 6 years ago
• WBGlIl / ReflectiveDLL_Patch
  ☆36Updated 4 years ago
• 0xTalShang / WindowsKernel
  windwos内核研究与驱动Code
  ☆62Updated 3 years ago