WINGS2709 / 360Safe
大数字驱动逆向代码
☆65Updated last year
Related projects ⓘ
Alternatives and complementary repositories for 360Safe
- sc4cpp is a shellcode framework based on C++☆87Updated 3 years ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆72Updated 2 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆34Updated last year
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆67Updated 3 years ago
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆37Updated 2 years ago
- 过去写的一些Windows安全研究相关代码☆134Updated 5 years ago
- ☆80Updated last month
- Win7内核私有符号结构转储☆64Updated 3 years ago
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆29Updated last year
- Hook NtDeviceIoControlFile with PatchGuard☆101Updated 2 years ago
- 《Windows 内核安全编程技术实践》 系列丛书,探索 Anti RootKit 反内核工具核心原理与技术实现细节。☆28Updated last year
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆91Updated last year
- 一个用来做windows内核hook的框架☆81Updated 6 months ago
- ☆79Updated 2 years ago
- ☆77Updated 3 years ago
- windwos内核研究与驱动Code☆60Updated 2 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆167Updated 2 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆98Updated 3 years ago
- ☆15Updated 2 years ago
- 整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆112Updated last year
- https://key08.com/index.php/2021/10/19/1375.html☆62Updated 2 years ago
- Changes handle's access rights using DKOM with a vulnerable driver☆24Updated 7 years ago
- 简单安排一下 autochk.sys 这个rootkit☆67Updated last year
- Free(or force?)file and delete it☆11Updated 5 years ago
- InfinityHook 支持Win7 到 Win11 最新版本,虚拟机环境及物理机环境☆33Updated last month
- ida提取特征码脚本☆53Updated 4 years ago
- ☆107Updated 5 years ago
- 无痕注入1☆69Updated 3 years ago
- 内存加载DLL 支持X86和X64(Memory PELoader Support X86 and X64)☆30Updated last year
- 隐藏可执行内存☆245Updated 8 months ago