WINGS2709 / 360SafeLinks
大数字驱动逆向代码
☆71Updated last year
Alternatives and similar repositories for 360Safe
Users that are interested in 360Safe are comparing it to the libraries listed below
Sorting:
- sc4cpp is a shellcode framework based on C++☆90Updated 3 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆83Updated 2 years ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆71Updated 3 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆69Updated 3 years ago
- Call NtCreateUserProcess directly as normal.☆72Updated 3 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆178Updated 2 years ago
- about how to make a anti-virus engine☆77Updated 2 months ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆95Updated 2 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆102Updated 4 years ago
- 过去写的一些Windows安全研究相关代码☆135Updated 6 years ago
- 整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆127Updated last year
- 《Windows内核编程》学习☆59Updated 4 years ago
- windwos内核研究与驱动Code☆65Updated 3 years ago
- Kill Protected Process Light Process (include av)☆58Updated last year
- 隐藏可执行内存☆261Updated 3 months ago
- Enum and Remove Hook in Windows☆38Updated 2 weeks ago
- Windows 常用版本内核文件收集☆10Updated last year
- Hook NtDeviceIoControlFile with PatchGuard☆109Updated 3 years ago
- 内存加载DLL 支持X86和X64(Memory PELoader Support X86 and X64)☆38Updated last year
- 无痕注入1☆76Updated 4 years ago
- shellcode 生成框架☆271Updated 3 years ago
- 简单安排一下 autochk.sys 这个rootkit☆72Updated 2 years ago
- myLittleBear☆58Updated 3 weeks ago
- It's a kernel-based keylogger for Windows x86/x64.☆141Updated 2 years ago
- Mhy Exp (exploit signed driver)☆142Updated 3 years ago
- Free(or force?)file and delete it☆12Updated 6 years ago
- 滴水壳(傀儡进程)☆9Updated 4 years ago
- 驱动加载器 -> 利用iqvw64e.sys映射驱动☆56Updated 5 years ago
- Analyze Windows x64 Kernel Memory Layout☆122Updated 4 years ago
- ☆24Updated 2 years ago