huoji120 / DuckSandboxDetectLinks
沙箱测试,测评国内常见沙箱的代码与结论
☆101Updated 4 years ago
Alternatives and similar repositories for DuckSandboxDetect
Users that are interested in DuckSandboxDetect are comparing it to the libraries listed below
Sorting:
- 过去写的一些Windows安全研究相关代码☆135Updated 6 years ago
- 简单安排一下 autochk.sys 这个rootkit☆71Updated 2 years ago
- 具备对PE文件添加区段、添加花指令、对代码段加密、修复重定位、加密IAT等功能☆59Updated 5 years ago
- 一个加壳工具☆63Updated 6 years ago
- ☆37Updated 5 years ago
- 加密壳☆34Updated 5 years ago
- ☆32Updated 5 years ago
- ☆22Updated 4 years ago
- 白文件扫描器 非公开☆28Updated 3 years ago
- ☆89Updated 3 years ago
- Search for information from manifests☆45Updated 6 years ago
- WINDOWS黑客編程技術詳解 [Windows-Hack-Programming backup]☆45Updated 6 years ago
- windwos内核研究与驱动Code☆64Updated 3 years ago
- power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes☆46Updated 3 years ago
- 模仿操作系统,加载pe文件到内存中☆76Updated 6 years ago
- Kill Protected Process Light Process (include av)☆58Updated last year
- ☆21Updated 5 years ago
- 利用图片隐写术来远程动态加载shellcode☆96Updated 2 years ago
- Windows CVE主防(HIPS/HIDS)☆55Updated 4 years ago
- ☆74Updated 3 years ago
- UAC_wenpon☆49Updated 3 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆68Updated 3 years ago
- 基于sunday算法的内存快速搜索,搜索2GB内存只需1秒☆72Updated 5 years ago
- 过360拦截加载无驱动签名☆60Updated 3 years ago
- bypass BeaconEye☆88Updated 3 years ago
- CobaltStrikeDetect☆50Updated 3 weeks ago
- Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).☆24Updated 7 months ago
- SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑☆63Updated 2 years ago
- Remote Download and Memory Execute for shellcode framework☆92Updated 2 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆37Updated last year