Wker666 / exe-analyzer
一款64位Exe程序动态追踪执行流程以及保存信息的工具
☆46Updated 5 months ago
Alternatives and similar repositories for exe-analyzer:
Users that are interested in exe-analyzer are comparing it to the libraries listed below
- ☆81Updated 4 years ago
- 《Windows 内核安全编程技术实践》 系列丛书,探索 Anti RootKit 反内核工具核心原理与技术实现细节。☆54Updated 2 years ago
- 一个用来做windows内核hook的框架☆116Updated last week
- 使用 Intel 虚拟化特性实现应用层HOOK☆60Updated 2 months ago
- 尽量汇聚反调试资源和利用对抗技术☆177Updated 11 months ago
- ☆198Updated 2 years ago
- 整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager☆122Updated last year
- Radical Windows ARK☆233Updated 2 weeks ago
- IDA Pro plugin AntiXorstr☆122Updated 2 months ago
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆31Updated 2 years ago
- InfinityHook 支持Win7 到 Win11 最新版本,虚拟机环境及物理机环境☆56Updated 6 months ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆175Updated 2 years ago
- Example of reading process memory through kernel special APC☆104Updated 2 years ago
- ☆65Updated 7 months ago
- 利用物理内存映射,实现虚拟内存的伪隐藏☆83Updated 2 years ago
- 大数字驱动逆向代码☆71Updated last year
- shellcode 生成框架☆262Updated 3 years ago
- Mhy Exp (exploit signed driver)☆140Updated 2 years ago
- Forked LLVM focused on MSVC Compatibility. This version is designed for windows users☆94Updated last month
- 《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料☆102Updated 2 years ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆79Updated last year
- ☆29Updated 7 months ago
- an ida plugin used to decompile vmp☆327Updated 10 months ago
- 从MmPfnData中枚举进程和页目录基址☆170Updated last year
- ☆145Updated 6 years ago
- about how to make a anti-virus engine☆60Updated last week
- ☆29Updated last year
- The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.☆23Updated 10 months ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆93Updated 2 years ago
- Obfuscator-LLVM for LLVM 16.x branch☆208Updated last year