《Windows内核编程》学习
☆62Feb 23, 2021Updated 5 years ago
Alternatives and similar repositories for WindowsKernelPrograming
Users that are interested in WindowsKernelPrograming are comparing it to the libraries listed below
Sorting:
- 学习Windows内核驱动编程 Learn Windows kernel driver programming.☆168Aug 27, 2024Updated last year
- 有需求做攻防对抗,买本书学习下常见技术,例子敲一敲☆227Jan 25, 2021Updated 5 years ago
- 寒江独钓 Windows内核安全编程☆45Jan 14, 2013Updated 13 years ago
- 无痕注入1☆77Jun 1, 2021Updated 4 years ago
- ☆33Dec 22, 2020Updated 5 years ago
- ☆140Mar 21, 2020Updated 5 years ago
- Stealing signatures from pe files☆15Apr 1, 2025Updated 11 months ago
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago
- 之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...☆72Apr 26, 2021Updated 4 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Aug 7, 2019Updated 6 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆23Nov 22, 2021Updated 4 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆98Mar 30, 2023Updated 2 years ago
- IO隐藏通信封装☆17May 31, 2021Updated 4 years ago
- a component of red teaming for generate route map.☆11Aug 30, 2024Updated last year
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆182Aug 26, 2022Updated 3 years ago
- Driver protect 驱动保护☆46Apr 23, 2020Updated 5 years ago
- Proof of Concept for EFSRPC Arbitrary File Upload (CVE-2021-43893)☆64Feb 14, 2022Updated 4 years ago
- 《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料☆105Jan 26, 2023Updated 3 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- Convert native dll to shellcode, and support exported function☆25Feb 10, 2021Updated 5 years ago
- InfinityHookPro Win7 -> Win11 latest☆553Feb 7, 2023Updated 3 years ago
- a monitoring windows driver calls kernel api tools☆129Jul 5, 2024Updated last year
- Rookit and anti rookit on Windows platform☆14Apr 30, 2024Updated last year
- 收集常用windows版本内核文件☆35Aug 16, 2023Updated 2 years ago
- Kernel LdrLoadDll injector☆264Oct 6, 2018Updated 7 years ago
- ☆18May 30, 2024Updated last year
- ☆36Mar 19, 2019Updated 7 years ago
- 用来存放平时写的一些net内存马,仅用于练手,需要可以自行修改☆90May 3, 2022Updated 3 years ago
- 非流量触发Ring 3后门/Non-traffic triggers Ring 3 backdoor☆22May 1, 2024Updated last year
- This is a random process injector, and more injection techniques will be added in the future.☆13Jul 17, 2020Updated 5 years ago
- 尽量汇聚反调试资源和利用对抗技术☆182May 21, 2024Updated last year
- Rootkit & Anti-rootkit☆42Jan 27, 2024Updated 2 years ago
- windwos内核研究与驱动Code☆67Dec 25, 2021Updated 4 years ago
- 利用图片隐写术来远程动态加载shellcode☆98Nov 14, 2022Updated 3 years ago
- ☆56Nov 21, 2022Updated 3 years ago
- EtwHook for win7-win11;☆23Sep 13, 2022Updated 3 years ago
- Windows Anti-Rootkit Tool☆546Dec 31, 2025Updated 2 months ago