fengjixuchui / InitiativeDefenseLinks
卓然主动防御源码(可执行文件+完整源码+完整作品报告)
☆15Updated 6 years ago
Alternatives and similar repositories for InitiativeDefense
Users that are interested in InitiativeDefense are comparing it to the libraries listed below
Sorting:
- x64HOOK库☆18Updated 5 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Updated 7 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- windows inlinehook R3 R0☆11Updated 7 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆51Updated 4 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Updated 7 years ago
- 扫描以及恢复 r3hook 类☆10Updated 3 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- ☆40Updated 5 years ago
- intel vt-x hypervisor ept☆25Updated 5 years ago
- 大表哥的Syscall-Monitor☆34Updated 5 years ago
- map driver to memory☆26Updated 6 years ago
- Easily hook WIN32 x64 functions☆18Updated 4 months ago
- 小型主动防御引擎☆56Updated 8 years ago
- Map memory to user space and manipulate user memory, using capmon☆23Updated 6 years ago
- ☆26Updated 7 years ago
- 一些研究☆14Updated 5 years ago
- 绕过卡巴斯基主动防御,加载驱动,unhook所有ssdt hook及shadow ssdt hook☆37Updated 9 years ago
- ☆14Updated 2 years ago
- x64 Kernel Hooks Detection☆24Updated 8 years ago
- win32kbase!NtDCompositionCommitSynchronizationObject and win32kbase!NtGdiGetCertificate☆16Updated 3 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Updated 4 years ago
- 安全卫士项目☆32Updated 7 years ago
- Protected Process Light Library☆18Updated 5 years ago
- 对debughelp的二次开发☆11Updated 2 years ago
- 逆的或者收集的别人家的代码☆27Updated 4 months ago
- A poc of embedding x64 code into x86 PE file☆19Updated 5 years ago
- ☆16Updated 2 years ago
- 进程保护、进程过滤的小工程、主要亮点是在内核中对操作系统中的用户进行管理☆16Updated 10 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Updated 11 years ago