estr3llas / anti-vm-cpuidView external linksLinks
A collection of cpuid instruction implementations for anti-vm purposes.
☆10Oct 5, 2023Updated 2 years ago
Alternatives and similar repositories for anti-vm-cpuid
Users that are interested in anti-vm-cpuid are comparing it to the libraries listed below
Sorting:
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- Self-Loading Registration Free COM Functions☆11Nov 12, 2019Updated 6 years ago
- ☆33Dec 22, 2020Updated 5 years ago
- Python interface for Binexport, the Bindiff export format☆20Dec 15, 2025Updated 2 months ago
- Export IDA microcode to BinExport format so that you can use BinDiff to diff microcodes☆12Sep 21, 2024Updated last year
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆19Jul 8, 2022Updated 3 years ago
- A simple tool for enumerating dynamic endpoints on a DCE/RPC remote or local endpoint mapper.☆15Oct 9, 2020Updated 5 years ago
- Information Flow Analysis for C#. Understand What Your Code Really Does☆42Nov 11, 2025Updated 3 months ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago
- Bootkits☆19Sep 13, 2023Updated 2 years ago
- Tools for analyzing Windows containers and break container's isolation☆32Aug 2, 2022Updated 3 years ago
- Usermode NT Explorer - Query kernel addresses, translate virtual to physical addresses, inspect the PFN database, and more.☆68Jan 27, 2026Updated 3 weeks ago
- ☆29Dec 29, 2022Updated 3 years ago
- 根据参考字符串,和结果逆向,推算出算法。☆21May 30, 2023Updated 2 years ago
- windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking☆53Aug 28, 2022Updated 3 years ago
- A tool to get symbols from executables to help with Windhawk mod development☆27May 3, 2025Updated 9 months ago
- C# 编写的用于 Dropbox 文件上传☆20Jan 16, 2022Updated 4 years ago
- ☆26Dec 29, 2021Updated 4 years ago
- This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…☆63Feb 11, 2024Updated 2 years ago
- 利用inline hook免杀绕过360,vt爆3个☆63Aug 21, 2022Updated 3 years ago
- Backup Windows 7.1 WDK sample for study☆26Aug 26, 2018Updated 7 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆115Jan 21, 2025Updated last year
- Windows LPE Nday☆32Apr 26, 2024Updated last year
- 变长多阶hash☆32Nov 3, 2014Updated 11 years ago
- IDA Pro plugin that displays all comments in a database☆75Jan 30, 2026Updated 2 weeks ago
- ☆26Oct 5, 2019Updated 6 years ago
- 本程序在后台持续运行,获取最新漏洞及每日简报,发送邮件给安全人员。☆26Sep 22, 2019Updated 6 years ago
- 过TP驱动☆28Feb 11, 2020Updated 6 years ago
- An minifilter-based transparent encryptor on Windows.☆30Feb 27, 2017Updated 8 years ago
- Handling C++ & __try exceptions without the need of built-in handlers.☆77Aug 28, 2021Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- ☆35Oct 10, 2023Updated 2 years ago
- Windows Sandbox Framework☆40Dec 31, 2021Updated 4 years ago
- HTTPS-based Remote Administration Tool (RAT)☆29Sep 9, 2016Updated 9 years ago
- 该漏洞存在于 NtQueryInformationToken 函数中,特别是在处理AuthzBasepCopyoutInternalSecurityAttributes 函数时,该漏洞源于内核在操作对象时对锁定机制的不当管理,这一失误可能导致恶意实体意外提升权限。☆40Jul 5, 2024Updated last year
- 💻 Windows 10 Kernel-mode rootkit☆32Sep 3, 2022Updated 3 years ago
- Advance LPC☆72May 2, 2017Updated 8 years ago