fengjixuchui / InitiativeDefenseLinks
卓然主动防御源码(可执行文件+完整源码+完整作品报告)
☆15Updated 6 years ago
Alternatives and similar repositories for InitiativeDefense
Users that are interested in InitiativeDefense are comparing it to the libraries listed below
Sorting:
- x64HOOK库☆18Updated 5 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Updated 7 years ago
- For Example. See Miro's Blog☆30Updated 2 years ago
- map driver to memory☆26Updated 6 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Updated 7 years ago
- windows inlinehook R3 R0☆11Updated 7 years ago
- Easily hook WIN32 x64 functions☆18Updated 5 months ago
- DllInject (Memory Load)☆9Updated 6 years ago
- intel vt-x hypervisor ept☆25Updated 5 years ago
- 小型主动防御引擎☆57Updated 9 years ago
- 逆的或者收集的别人家的代码☆28Updated 5 months ago
- 绕过卡巴斯基主动防御,加载驱动,unhook所有ssdt hook及shadow ssdt hook☆37Updated 9 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Updated 11 years ago
- x64 Kernel Hooks Detection☆24Updated 8 years ago
- ☆14Updated 6 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆51Updated 4 years ago
- 扫描以及恢复 r3hook 类☆10Updated 3 years ago
- Map memory to user space and manipulate user memory, using capmon☆24Updated 6 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Updated 4 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- ☆36Updated 4 years ago
- ☆25Updated 6 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Updated 7 years ago
- 对debughelp的二次开发☆11Updated 2 years ago
- fork HoShiMin Avanguard☆21Updated 6 years ago
- 学习windows驱动相关☆22Updated 6 years ago
- 一个可以帮助你进行Windows驱�动开发和分析的工具。☆45Updated 4 years ago
- ☆41Updated 5 years ago
- PDB Explorer 是一个能够查看微软 pdb 文件(Program DataBase,程序数据库)的工具,它能够将 pdb 文件中的 struct、union 及 enum 类型的定义以 C/C++ 的语法显示出来,特别适合 Windows 底层研究人员及 DDK …☆38Updated 10 years ago
- 一个32位windows下x86指令集的代码扭曲加密小工具☆32Updated 6 years ago