fengjixuchui / InitiativeDefenseLinks
卓然主动防御源码(可执行文件+完整源码+完整作品报告)
☆15Updated 6 years ago
Alternatives and similar repositories for InitiativeDefense
Users that are interested in InitiativeDefense are comparing it to the libraries listed below
Sorting:
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Updated 7 years ago
- x64HOOK库☆18Updated 5 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Updated 7 years ago
- 小型主动防御引擎☆57Updated 9 years ago
- 绕过卡巴斯基主动防御,加载驱动,unhook所有ssdt hook及shadow ssdt hook☆38Updated 10 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆53Updated 4 years ago
- map driver to memory☆26Updated 7 years ago
- 逆的或者收集的别人家的代码☆28Updated 9 months ago
- windows inlinehook R3 R0☆11Updated 7 years ago
- 扫描以及恢复 r3hook 类☆10Updated 4 years ago
- Easily hook WIN32 x64 functions☆18Updated 8 months ago
- intel vt-x hypervisor ept☆24Updated 5 years ago
- Map memory to user space and manipulate user memory, using capmon☆24Updated 7 years ago
- DllInject (Memory Load)☆11Updated 6 years ago
- A poc of embedding x64 code into x86 PE file☆20Updated 6 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- ☆14Updated 6 years ago
- Windows内核设计思想☆24Updated 8 years ago
- 寒江独钓 Windows内核安全编程☆45Updated 12 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Updated 4 years ago
- What makes it page☆17Updated 3 years ago
- x64 Kernel Hooks Detection☆24Updated 8 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Updated 7 years ago
- 一个32位windows下x86指令集的代码扭曲加密小工具☆33Updated 6 years ago
- 一个可以帮助你进行Windows驱动开发和分析的工具。☆46Updated 4 years ago
- ☆24Updated 6 years ago
- fork HoShiMin Avanguard☆21Updated 7 years ago
- ☆26Updated 8 years ago
- 大表哥的Syscall-Monitor☆34Updated 6 years ago