WINGS2709 / 360SafeLinks
大数字驱动逆向代码
☆71Updated last year
Alternatives and similar repositories for 360Safe
Users that are interested in 360Safe are comparing it to the libraries listed below
Sorting:
- 利用物理内存映射,实现虚拟内存的伪隐藏☆83Updated 2 years ago
- sc4cpp is a shellcode framework based on C++☆90Updated 3 years ago
- 过去写的一些Windows安全研究相关代码☆134Updated 6 years ago
- ida提取特征码脚本☆56Updated 5 years ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆71Updated 3 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆94Updated 2 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆106Updated 3 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆100Updated 3 years ago
- ☆80Updated 3 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆176Updated 2 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆67Updated 3 years ago
- ☆81Updated 4 years ago
- ☆110Updated 5 years ago
- Win7内核私有符号结构转储☆67Updated 3 years ago
- 整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆122Updated last year
- 一个windows内核驱动分析框架,对内核所有导出函数进行挂钩监控☆48Updated 3 weeks ago
- 使用 Intel 虚拟化特性实现应用层HOOK☆61Updated 3 months ago
- 收集常用windows版本内核文件☆32Updated last year
- Kill Protected Process Light Process (include av)☆56Updated last year
- Call NtCreateUserProcess directly as normal.☆71Updated 3 years ago
- 一个用来做windows内核hook的框架☆150Updated last month
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆98Updated 4 years ago
- 隐藏可执行内存☆252Updated last month
- 内存加载DLL 支持X86和X64(Memory PELoader Support X86 and X64)☆33Updated last year
- 让Etwhook再次伟大! Make InfinityHook Great Again!☆136Updated 3 years ago
- 《Windows 内核安全编程技术实践》 系列丛书,探索 Anti RootKit 反内核工具核心原理与技术实现细节。☆58Updated 2 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆37Updated last year
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆31Updated 2 years ago
- VT Hook☆46Updated 11 months ago
- shellcode 生成框架☆264Updated 3 years ago